tootlab-mastodon/spec/controllers/admin/accounts_controller_spec.rb

require 'rails_helper'

RSpec.describe Admin::AccountsController, type: :controller do
  render_views

  before { sign_in current_user, scope: :user }

  describe 'GET #index' do
    let(:current_user) { Fabricate(:user, admin: true) }

    around do |example|
      default_per_page = Account.default_per_page
      Account.paginates_per 1
      example.run
      Account.paginates_per default_per_page
    end

    it 'filters with parameters' do
      new = AccountFilter.method(:new)

      expect(AccountFilter).to receive(:new) do |params|
        h = params.to_h

        expect(h[:origin]).to eq 'local'
        expect(h[:by_domain]).to eq 'domain'
        expect(h[:status]).to eq 'active'
        expect(h[:username]).to eq 'username'
        expect(h[:display_name]).to eq 'display name'
        expect(h[:email]).to eq 'local-part@domain'
        expect(h[:ip]).to eq '0.0.0.42'

        new.call({})
      end

      get :index, params: {
        origin: 'local',
        by_domain: 'domain',
        status: 'active',
        username: 'username',
        display_name: 'display name',
        email: 'local-part@domain',
        ip: '0.0.0.42'
      }
    end

    it 'paginates accounts' do
      Fabricate(:account)

      get :index, params: { page: 2 }

      accounts = assigns(:accounts)
      expect(accounts.count).to eq 1
      expect(accounts.klass).to be Account
    end

    it 'returns http success' do
      get :index
      expect(response).to have_http_status(200)
    end
  end

  describe 'GET #show' do
    let(:current_user) { Fabricate(:user, admin: true) }
    let(:account) { Fabricate(:account) }

    it 'returns http success' do
      get :show, params: { id: account.id }
      expect(response).to have_http_status(200)
    end
  end

  describe 'POST #memorialize' do
    subject { post :memorialize, params: { id: account.id } }

    let(:current_user) { Fabricate(:user, admin: current_user_admin) }
    let(:account) { user.account }
    let(:user) { Fabricate(:user, admin: target_user_admin) }

    context 'when user is admin' do
      let(:current_user_admin) { true }

      context 'when target user is admin' do
        let(:target_user_admin) { true }

        it 'fails to memorialize account' do
          is_expected.to have_http_status :forbidden
          expect(account.reload).not_to be_memorial
        end
      end

      context 'when target user is not admin' do
        let(:target_user_admin) { false }

        it 'succeeds in memorializing account' do
          is_expected.to redirect_to admin_account_path(account.id)
          expect(account.reload).to be_memorial
        end
      end
    end

    context 'when user is not admin' do
      let(:current_user_admin) { false }

      context 'when target user is admin' do
        let(:target_user_admin) { true }

        it 'fails to memorialize account' do
          is_expected.to have_http_status :forbidden
          expect(account.reload).not_to be_memorial
        end
      end

      context 'when target user is not admin' do
        let(:target_user_admin) { false }

        it 'fails to memorialize account' do
          is_expected.to have_http_status :forbidden
          expect(account.reload).not_to be_memorial
        end
      end
    end
  end

  describe 'POST #enable' do
    subject { post :enable, params: { id: account.id } }

    let(:current_user) { Fabricate(:user, admin: admin) }
    let(:account) { user.account }
    let(:user) { Fabricate(:user, disabled: true) }

    context 'when user is admin' do
      let(:admin) { true }

      it 'succeeds in enabling account' do
        is_expected.to redirect_to admin_account_path(account.id)
        expect(user.reload).not_to be_disabled
      end
    end

    context 'when user is not admin' do
      let(:admin) { false }

      it 'fails to enable account' do
        is_expected.to have_http_status :forbidden
        expect(user.reload).to be_disabled
      end
    end
  end

  describe 'POST #redownload' do
    subject { post :redownload, params: { id: account.id } }

    let(:current_user) { Fabricate(:user, admin: admin) }
    let(:account) { Fabricate(:account) }

    context 'when user is admin' do
      let(:admin) { true }

      it 'succeeds in redownloadin' do
        is_expected.to redirect_to admin_account_path(account.id)
      end
    end

    context 'when user is not admin' do
      let(:admin) { false }

      it 'fails to redownload' do
        is_expected.to have_http_status :forbidden
      end
    end
  end

  describe 'POST #remove_avatar' do
    subject { post :remove_avatar, params: { id: account.id } }

    let(:current_user) { Fabricate(:user, admin: admin) }
    let(:account) { Fabricate(:account) }

    context 'when user is admin' do
      let(:admin) { true }

      it 'succeeds in removing avatar' do
        is_expected.to redirect_to admin_account_path(account.id)
      end
    end

    context 'when user is not admin' do
      let(:admin) { false }

      it 'fails to remove avatar' do
        is_expected.to have_http_status :forbidden
      end
    end
  end

  describe 'POST #unblock_email' do
    subject { post :unblock_email, params: { id: account.id } }

    let(:current_user) { Fabricate(:user, admin: admin) }
    let(:account) { Fabricate(:account, suspended: true) }
    let!(:email_block) { Fabricate(:canonical_email_block, reference_account: account) }

    context 'when user is admin' do
      let(:admin) { true }

      it 'succeeds in removing email blocks' do
        expect { subject }.to change { CanonicalEmailBlock.where(reference_account: account).count }.from(1).to(0)
      end

      it 'redirects to admin account path' do
        subject
        expect(response).to redirect_to admin_account_path(account.id)
      end
    end

    context 'when user is not admin' do
      let(:admin) { false }

      it 'fails to remove avatar' do
        subject
        expect(response).to have_http_status :forbidden
      end
    end
  end
end
Normalize localizations, add stub for admin/accounts 2016-11-30 09:32:26 -05:00			`require 'rails_helper'`

			`RSpec.describe Admin::AccountsController, type: :controller do`
More controller specs (#2561) * Add render_views in more places * Delegate methods from account to user with allow nil true, so that admin accounts show view renders when missing a user * Use actual account instances in authorize follow controller spec 2017-04-28 09:12:37 -04:00			`render_views`

Add missing tests for admin/accounts_controller (#7791) 2018-06-12 08:24:46 -04:00			`before { sign_in current_user, scope: :user }`
Normalize localizations, add stub for admin/accounts 2016-11-30 09:32:26 -05:00
			`describe 'GET #index' do`
Add missing tests for admin/accounts_controller (#7791) 2018-06-12 08:24:46 -04:00			`let(:current_user) { Fabricate(:user, admin: true) }`

Cover Admin::AccountsController more (#3327) 2017-06-28 19:43:10 -04:00			`around do \|example\|`
			`default_per_page = Account.default_per_page`
			`Account.paginates_per 1`
			`example.run`
			`Account.paginates_per default_per_page`
			`end`

			`it 'filters with parameters' do`
			`new = AccountFilter.method(:new)`

			`expect(AccountFilter).to receive(:new) do \|params\|`
			`h = params.to_h`

Add batch suspend for accounts in admin UI (#17009) 2021-12-05 15:48:39 -05:00			`expect(h[:origin]).to eq 'local'`
Cover Admin::AccountsController more (#3327) 2017-06-28 19:43:10 -04:00			`expect(h[:by_domain]).to eq 'domain'`
Add batch suspend for accounts in admin UI (#17009) 2021-12-05 15:48:39 -05:00			`expect(h[:status]).to eq 'active'`
Cover Admin::AccountsController more (#3327) 2017-06-28 19:43:10 -04:00			`expect(h[:username]).to eq 'username'`
			`expect(h[:display_name]).to eq 'display name'`
			`expect(h[:email]).to eq 'local-part@domain'`
			`expect(h[:ip]).to eq '0.0.0.42'`

			`new.call({})`
			`end`

			`get :index, params: {`
Add batch suspend for accounts in admin UI (#17009) 2021-12-05 15:48:39 -05:00			`origin: 'local',`
Cover Admin::AccountsController more (#3327) 2017-06-28 19:43:10 -04:00			`by_domain: 'domain',`
Add batch suspend for accounts in admin UI (#17009) 2021-12-05 15:48:39 -05:00			`status: 'active',`
Cover Admin::AccountsController more (#3327) 2017-06-28 19:43:10 -04:00			`username: 'username',`
			`display_name: 'display name',`
			`email: 'local-part@domain',`
			`ip: '0.0.0.42'`
			`}`
			`end`

			`it 'paginates accounts' do`
			`Fabricate(:account)`

			`get :index, params: { page: 2 }`

			`accounts = assigns(:accounts)`
			`expect(accounts.count).to eq 1`
			`expect(accounts.klass).to be Account`
			`end`

Normalize localizations, add stub for admin/accounts 2016-11-30 09:32:26 -05:00			`it 'returns http success' do`
			`get :index`
Use raw status code on have_http_status (#7214) 2018-04-21 15:35:07 -04:00			`expect(response).to have_http_status(200)`
Normalize localizations, add stub for admin/accounts 2016-11-30 09:32:26 -05:00			`end`
			`end`

			`describe 'GET #show' do`
Add missing tests for admin/accounts_controller (#7791) 2018-06-12 08:24:46 -04:00			`let(:current_user) { Fabricate(:user, admin: true) }`
Refactor and improve tests (#17386) * Change account and user fabricators to simplify and improve tests - `Fabricate(:account)` implicitly fabricates an associated `user` if no `domain` attribute is given (an account with `domain: nil` is considered a local account, but no user record was created), unless `user: nil` is passed - `Fabricate(:account, user: Fabricate(:user))` should still be possible but is discouraged. * Fix and refactor tests - avoid passing unneeded attributes to `Fabricate(:user)` or `Fabricate(:account)` - avoid embedding `Fabricate(:user)` into a `Fabricate(:account)` or the other way around - prefer `Fabricate(:user, account_attributes: …)` to `Fabricate(:user, account: Fabricate(:account, …)` - also, some tests were using remote accounts with local user records, which is not representative of production code. 2022-01-27 18:46:42 -05:00			`let(:account) { Fabricate(:account) }`
Improve notification model 2016-12-03 14:04:19 -05:00
Normalize localizations, add stub for admin/accounts 2016-11-30 09:32:26 -05:00			`it 'returns http success' do`
Improve notification model 2016-12-03 14:04:19 -05:00			`get :show, params: { id: account.id }`
Use raw status code on have_http_status (#7214) 2018-04-21 15:35:07 -04:00			`expect(response).to have_http_status(200)`
Normalize localizations, add stub for admin/accounts 2016-11-30 09:32:26 -05:00			`end`
			`end`
Add missing tests for admin/accounts_controller (#7791) 2018-06-12 08:24:46 -04:00
			`describe 'POST #memorialize' do`
			`subject { post :memorialize, params: { id: account.id } }`

			`let(:current_user) { Fabricate(:user, admin: current_user_admin) }`
Refactor and improve tests (#17386) * Change account and user fabricators to simplify and improve tests - `Fabricate(:account)` implicitly fabricates an associated `user` if no `domain` attribute is given (an account with `domain: nil` is considered a local account, but no user record was created), unless `user: nil` is passed - `Fabricate(:account, user: Fabricate(:user))` should still be possible but is discouraged. * Fix and refactor tests - avoid passing unneeded attributes to `Fabricate(:user)` or `Fabricate(:account)` - avoid embedding `Fabricate(:user)` into a `Fabricate(:account)` or the other way around - prefer `Fabricate(:user, account_attributes: …)` to `Fabricate(:user, account: Fabricate(:account, …)` - also, some tests were using remote accounts with local user records, which is not representative of production code. 2022-01-27 18:46:42 -05:00			`let(:account) { user.account }`
Add missing tests for admin/accounts_controller (#7791) 2018-06-12 08:24:46 -04:00			`let(:user) { Fabricate(:user, admin: target_user_admin) }`

			`context 'when user is admin' do`
			`let(:current_user_admin) { true }`

			`context 'when target user is admin' do`
			`let(:target_user_admin) { true }`

			`it 'fails to memorialize account' do`
			`is_expected.to have_http_status :forbidden`
			`expect(account.reload).not_to be_memorial`
			`end`
			`end`

			`context 'when target user is not admin' do`
			`let(:target_user_admin) { false }`

			`it 'succeeds in memorializing account' do`
			`is_expected.to redirect_to admin_account_path(account.id)`
			`expect(account.reload).to be_memorial`
			`end`
			`end`
			`end`

			`context 'when user is not admin' do`
			`let(:current_user_admin) { false }`

			`context 'when target user is admin' do`
			`let(:target_user_admin) { true }`

			`it 'fails to memorialize account' do`
			`is_expected.to have_http_status :forbidden`
			`expect(account.reload).not_to be_memorial`
			`end`
			`end`

			`context 'when target user is not admin' do`
			`let(:target_user_admin) { false }`

			`it 'fails to memorialize account' do`
			`is_expected.to have_http_status :forbidden`
			`expect(account.reload).not_to be_memorial`
			`end`
			`end`
			`end`
			`end`

			`describe 'POST #enable' do`
			`subject { post :enable, params: { id: account.id } }`

			`let(:current_user) { Fabricate(:user, admin: admin) }`
Refactor and improve tests (#17386) * Change account and user fabricators to simplify and improve tests - `Fabricate(:account)` implicitly fabricates an associated `user` if no `domain` attribute is given (an account with `domain: nil` is considered a local account, but no user record was created), unless `user: nil` is passed - `Fabricate(:account, user: Fabricate(:user))` should still be possible but is discouraged. * Fix and refactor tests - avoid passing unneeded attributes to `Fabricate(:user)` or `Fabricate(:account)` - avoid embedding `Fabricate(:user)` into a `Fabricate(:account)` or the other way around - prefer `Fabricate(:user, account_attributes: …)` to `Fabricate(:user, account: Fabricate(:account, …)` - also, some tests were using remote accounts with local user records, which is not representative of production code. 2022-01-27 18:46:42 -05:00			`let(:account) { user.account }`
Add missing tests for admin/accounts_controller (#7791) 2018-06-12 08:24:46 -04:00			`let(:user) { Fabricate(:user, disabled: true) }`

			`context 'when user is admin' do`
			`let(:admin) { true }`

			`it 'succeeds in enabling account' do`
			`is_expected.to redirect_to admin_account_path(account.id)`
			`expect(user.reload).not_to be_disabled`
			`end`
			`end`

			`context 'when user is not admin' do`
			`let(:admin) { false }`

			`it 'fails to enable account' do`
			`is_expected.to have_http_status :forbidden`
			`expect(user.reload).to be_disabled`
			`end`
			`end`
			`end`

			`describe 'POST #redownload' do`
			`subject { post :redownload, params: { id: account.id } }`

			`let(:current_user) { Fabricate(:user, admin: admin) }`
			`let(:account) { Fabricate(:account) }`

			`context 'when user is admin' do`
			`let(:admin) { true }`

			`it 'succeeds in redownloadin' do`
			`is_expected.to redirect_to admin_account_path(account.id)`
			`end`
			`end`

			`context 'when user is not admin' do`
			`let(:admin) { false }`

			`it 'fails to redownload' do`
			`is_expected.to have_http_status :forbidden`
			`end`
			`end`
			`end`

			`describe 'POST #remove_avatar' do`
			`subject { post :remove_avatar, params: { id: account.id } }`

			`let(:current_user) { Fabricate(:user, admin: admin) }`
			`let(:account) { Fabricate(:account) }`

			`context 'when user is admin' do`
			`let(:admin) { true }`

			`it 'succeeds in removing avatar' do`
			`is_expected.to redirect_to admin_account_path(account.id)`
			`end`
			`end`

			`context 'when user is not admin' do`
			`let(:admin) { false }`

			`it 'fails to remove avatar' do`
			`is_expected.to have_http_status :forbidden`
			`end`
			`end`
			`end`
Add ability for admins to delete canonical email blocks (#16644) * Add admin option to remove canonical email blocks from a deleted account * Add tootctl canonical_email_blocks to inspect and remove canonical email blocks 2021-12-17 17:02:14 -05:00
			`describe 'POST #unblock_email' do`
Fix test-related issues (#17888) * Remove obsolete RSS::Serializer test Since #17828, RSS::Serializer no longer has specific code for deleted statuses, but it is never called on deleted statuses anyway. * Rename erroneously-named test files * Fix failing test * Fix test deprecation warnings * Update CircleCI Ruby orb 1.4.0 has a bug that does not match all the test files due to incorrect globbing 2022-03-28 06:43:58 -04:00			`subject { post :unblock_email, params: { id: account.id } }`
Add ability for admins to delete canonical email blocks (#16644) * Add admin option to remove canonical email blocks from a deleted account * Add tootctl canonical_email_blocks to inspect and remove canonical email blocks 2021-12-17 17:02:14 -05:00
			`let(:current_user) { Fabricate(:user, admin: admin) }`
			`let(:account) { Fabricate(:account, suspended: true) }`
			`let!(:email_block) { Fabricate(:canonical_email_block, reference_account: account) }`

			`context 'when user is admin' do`
			`let(:admin) { true }`

			`it 'succeeds in removing email blocks' do`
Fix test-related issues (#17888) * Remove obsolete RSS::Serializer test Since #17828, RSS::Serializer no longer has specific code for deleted statuses, but it is never called on deleted statuses anyway. * Rename erroneously-named test files * Fix failing test * Fix test deprecation warnings * Update CircleCI Ruby orb 1.4.0 has a bug that does not match all the test files due to incorrect globbing 2022-03-28 06:43:58 -04:00			`expect { subject }.to change { CanonicalEmailBlock.where(reference_account: account).count }.from(1).to(0)`
Add ability for admins to delete canonical email blocks (#16644) * Add admin option to remove canonical email blocks from a deleted account * Add tootctl canonical_email_blocks to inspect and remove canonical email blocks 2021-12-17 17:02:14 -05:00			`end`

			`it 'redirects to admin account path' do`
Fix test-related issues (#17888) * Remove obsolete RSS::Serializer test Since #17828, RSS::Serializer no longer has specific code for deleted statuses, but it is never called on deleted statuses anyway. * Rename erroneously-named test files * Fix failing test * Fix test deprecation warnings * Update CircleCI Ruby orb 1.4.0 has a bug that does not match all the test files due to incorrect globbing 2022-03-28 06:43:58 -04:00			`subject`
Add ability for admins to delete canonical email blocks (#16644) * Add admin option to remove canonical email blocks from a deleted account * Add tootctl canonical_email_blocks to inspect and remove canonical email blocks 2021-12-17 17:02:14 -05:00			`expect(response).to redirect_to admin_account_path(account.id)`
			`end`
			`end`

			`context 'when user is not admin' do`
			`let(:admin) { false }`

			`it 'fails to remove avatar' do`
Fix test-related issues (#17888) * Remove obsolete RSS::Serializer test Since #17828, RSS::Serializer no longer has specific code for deleted statuses, but it is never called on deleted statuses anyway. * Rename erroneously-named test files * Fix failing test * Fix test deprecation warnings * Update CircleCI Ruby orb 1.4.0 has a bug that does not match all the test files due to incorrect globbing 2022-03-28 06:43:58 -04:00			`subject`
Add ability for admins to delete canonical email blocks (#16644) * Add admin option to remove canonical email blocks from a deleted account * Add tootctl canonical_email_blocks to inspect and remove canonical email blocks 2021-12-17 17:02:14 -05:00			`expect(response).to have_http_status :forbidden`
			`end`
			`end`
			`end`
Normalize localizations, add stub for admin/accounts 2016-11-30 09:32:26 -05:00			`end`