Project

General

Profile

« Previous | Next » 

Revision acfbc458

Added by Marek Hulán about 10 years ago

fixes #812 - new permissions model, user group role and nest support, role filters for better granularity

Contributions from:

View differences:

test/unit/model_test.rb
m.hosts << host
assert !m.destroy
end
def setup_user operation
@one = users(:one)
as_admin do
role = Role.find_or_create_by_name :name => "#{operation}_models"
role.permissions = ["#{operation}_models".to_sym]
@one.roles = [role]
@one.save!
end
User.current = @one
end
test "user with create permissions should be able to create" do
setup_user "create"
record = Model.create :name => "dummy"
assert record.valid?
assert !record.new_record?
end
test "user with view permissions should not be able to create" do
setup_user "view"
record = Model.create :name => "dummy"
assert record.valid?
assert record.new_record?
end
test "user with destroy permissions should be able to destroy" do
setup_user "destroy"
record = Model.first
as_admin do
record.hosts.destroy_all
end
assert record.destroy
assert record.frozen?
end
test "user with edit permissions should not be able to destroy" do
setup_user "edit"
record = Model.first
assert !record.destroy
assert !record.frozen?
end
test "user with edit permissions should be able to edit" do
setup_user "edit"
record = Model.first
record.name = "renamed"
assert record.save
end
test "user with destroy permissions should not be able to edit" do
setup_user "destroy"
record = Model.first
record.name = "renamed"
as_admin do
record.hosts.destroy_all
end
assert !record.save
assert record.valid?
end
end

Also available in: Unified diff