discourse/spec/requests/admin/user_fields_controller_spec.rb

# frozen_string_literal: true

RSpec.describe Admin::UserFieldsController do
  fab!(:admin)
  fab!(:moderator)
  fab!(:user)

  describe "#create" do
    context "when logged in as an admin" do
      before { sign_in(admin) }

      it "creates a user field" do
        expect {
          post "/admin/customize/user_fields.json",
               params: {
                 user_field: {
                   name: "hello",
                   description: "hello desc",
                   field_type: "text",
                   requirement: "on_signup",
                 },
               }

          expect(response.status).to eq(200)
        }.to change(UserField, :count).by(1)
      end

      it "creates a user field with options" do
        expect do
          post "/admin/customize/user_fields.json",
               params: {
                 user_field: {
                   name: "hello",
                   description: "hello desc",
                   field_type: "dropdown",
                   options: %w[a b c],
                   requirement: "on_signup",
                 },
               }

          expect(response.status).to eq(200)
        end.to change(UserField, :count).by(1)

        expect(UserFieldOption.count).to eq(3)
      end
    end

    shared_examples "user field creation not allowed" do
      it "prevents creation with a 404 response" do
        expect do
          post "/admin/customize/user_fields.json",
               params: {
                 user_field: {
                   name: "hello",
                   description: "hello desc",
                   field_type: "text",
                 },
               }
        end.not_to change { UserField.count }

        expect(response.status).to eq(404)
        expect(response.parsed_body["errors"]).to include(I18n.t("not_found"))
      end
    end

    context "when logged in as a moderator" do
      before { sign_in(moderator) }

      include_examples "user field creation not allowed"
    end

    context "when logged in as a non-staff user" do
      before { sign_in(user) }

      include_examples "user field creation not allowed"
    end
  end

  describe "#index" do
    fab!(:user_field)

    context "when logged in as an admin" do
      before { sign_in(admin) }

      it "returns a list of user fields" do
        get "/admin/customize/user_fields.json"
        expect(response.status).to eq(200)
        json = response.parsed_body
        expect(json["user_fields"]).to be_present
      end
    end

    shared_examples "user fields inaccessible" do
      it "denies access with a 404 response" do
        get "/admin/customize/user_fields.json"

        expect(response.status).to eq(404)
        expect(response.parsed_body["errors"]).to include(I18n.t("not_found"))
        expect(response.parsed_body["user_fields"]).to be_nil
      end
    end

    context "when logged in as a moderator" do
      before { sign_in(moderator) }

      include_examples "user fields inaccessible"
    end

    context "when logged in as a non-staff user" do
      before { sign_in(user) }

      include_examples "user fields inaccessible"
    end
  end

  describe "#destroy" do
    fab!(:user_field)

    context "when logged in as an admin" do
      before { sign_in(admin) }

      it "deletes the user field" do
        expect {
          delete "/admin/customize/user_fields/#{user_field.id}.json"
          expect(response.status).to eq(200)
        }.to change(UserField, :count).by(-1)
      end
    end

    shared_examples "user field deletion not allowed" do
      it "prevents deletion with a 404 response" do
        expect do delete "/admin/customize/user_fields/#{user_field.id}.json" end.not_to change {
          UserField.count
        }

        expect(response.status).to eq(404)
        expect(response.parsed_body["errors"]).to include(I18n.t("not_found"))
      end
    end

    context "when logged in as a moderator" do
      before { sign_in(moderator) }

      include_examples "user field deletion not allowed"
    end

    context "when logged in as a non-staff user" do
      before { sign_in(user) }

      include_examples "user field deletion not allowed"
    end
  end

  describe "#update" do
    fab!(:user_field)

    context "when logged in as an admin" do
      before { sign_in(admin) }

      it "updates the user field" do
        put "/admin/customize/user_fields/#{user_field.id}.json",
            params: {
              user_field: {
                name: "fraggle",
                field_type: "confirm",
                description: "muppet",
                requirement: "optional",
              },
            }

        expect(response.status).to eq(200)
        expect(user_field.reload).to have_attributes(
          name: "fraggle",
          field_type: "confirm",
          required?: false,
        )
      end

      it "updates the user field options" do
        put "/admin/customize/user_fields/#{user_field.id}.json",
            params: {
              user_field: {
                name: "fraggle",
                field_type: "dropdown",
                description: "muppet",
                options: %w[hello hello world],
              },
            }

        expect(response.status).to eq(200)
        user_field.reload
        expect(user_field.name).to eq("fraggle")
        expect(user_field.field_type).to eq("dropdown")
        expect(user_field.user_field_options.size).to eq(2)
      end

      it "keeps options when updating the user field" do
        put "/admin/customize/user_fields/#{user_field.id}.json",
            params: {
              user_field: {
                name: "fraggle",
                field_type: "dropdown",
                description: "muppet",
                options: %w[hello hello world],
                position: 1,
              },
            }

        expect(response.status).to eq(200)
        user_field.reload
        expect(user_field.user_field_options.size).to eq(2)

        put "/admin/customize/user_fields/#{user_field.id}.json",
            params: {
              user_field: {
                name: "fraggle",
                field_type: "dropdown",
                description: "muppet",
                position: 2,
              },
            }

        expect(response.status).to eq(200)
        user_field.reload
        expect(user_field.user_field_options.size).to eq(2)
      end

      it "removes directory column record if not public" do
        next_position = DirectoryColumn.maximum("position") + 1
        DirectoryColumn.create(
          user_field_id: user_field.id,
          enabled: false,
          type: DirectoryColumn.types[:user_field],
          position: next_position,
        )
        expect {
          put "/admin/customize/user_fields/#{user_field.id}.json",
              params: {
                user_field: {
                  show_on_profile: false,
                  show_on_user_card: false,
                  searchable: true,
                },
              }
        }.to change { DirectoryColumn.count }.by(-1)
      end
    end

    shared_examples "user field update not allowed" do
      it "prevents updates with a 404 response" do
        user_field.reload
        original_name = user_field.name

        put "/admin/customize/user_fields/#{user_field.id}.json",
            params: {
              user_field: {
                name: "fraggle",
                field_type: "confirm",
                description: "muppet",
              },
            }

        expect(response.status).to eq(404)
        expect(response.parsed_body["errors"]).to include(I18n.t("not_found"))

        user_field.reload
        expect(user_field.name).to eq(original_name)
      end
    end

    context "when logged in as a moderator" do
      before { sign_in(moderator) }

      include_examples "user field update not allowed"
    end

    context "when logged in as a non-staff user" do
      before { sign_in(user) }

      include_examples "user field update not allowed"
    end
  end
end
DEV: use #frozen_string_literal: true on all spec This change both speeds up specs (less strings to allocate) and helps catch cases where methods in Discourse are mutating inputs. Overall we will be migrating everything to use #frozen_string_literal: true it will take a while, but this is the first and safest move in this direction 2019-04-30 08:27:42 +08:00			`# frozen_string_literal: true`

Add RSpec 4 compatibility (#17652) * Remove outdated option https://github.com/rspec/rspec-core/commit/04078317ba6577699d06cf4dccf014254dcde7a6 * Use the non-globally exposed RSpec syntax https://github.com/rspec/rspec-core/pull/2803 * Use the non-globally exposed RSpec syntax, cont https://github.com/rspec/rspec-core/pull/2803 * Comply to strict predicate matchers See: - https://github.com/rspec/rspec-expectations/pull/1195 - https://github.com/rspec/rspec-expectations/pull/1196 - https://github.com/rspec/rspec-expectations/pull/1277 2022-07-28 10:27:38 +08:00			`RSpec.describe Admin::UserFieldsController do`
DEV: Allow fab! without block (#24314) The most common thing that we do with fab! is: fab!(:thing) { Fabricate(:thing) } This commit adds a shorthand for this which is just simply: fab!(:thing) i.e. If you omit the block, then, by default, you'll get a `Fabricate`d object using the fabricator of the same name. 2023-11-10 06:47:59 +08:00			`fab!(:admin)`
			`fab!(:moderator)`
			`fab!(:user)`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00
DEV: Extend specs coverage for non-admin access to admin endpoints (#18833) Replace base controller class inheritance specs with explicit specs for non-staff and moderator access to admin resources 2022-11-03 11:42:44 +08:00			`describe "#create" do`
			`context "when logged in as an admin" do`
			`before { sign_in(admin) }`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00
			`it "creates a user field" do`
controllers with rspec3 syntax 2015-01-10 01:04:02 +08:00			`expect {`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`post "/admin/customize/user_fields.json",`
			`params: {`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`user_field: {`
			`name: "hello",`
			`description: "hello desc",`
			`field_type: "text",`
FEATURE: Implement new required options in admin user fields UI (#27079) We're planning to implement a feature that allows adding required fields for existing users. This PR does some preparatory refactoring to make that possible. There should be no changes to existing behaviour. Just a small update to the admin UI. 2024-05-23 19:18:25 +08:00			`requirement: "on_signup",`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`},`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`}`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00
DEV: Assert for 200 response code to avoid changing magic helper in the future. 2018-06-07 16:11:09 +08:00			`expect(response.status).to eq(200)`
controllers with rspec3 syntax 2015-01-10 01:04:02 +08:00			`}.to change(UserField, :count).by(1)`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00			`end`
FEATURE: New "Dropdown" user field type 2015-07-29 00:29:40 +08:00
			`it "creates a user field with options" do`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`expect do`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`post "/admin/customize/user_fields.json",`
			`params: {`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`user_field: {`
			`name: "hello",`
			`description: "hello desc",`
			`field_type: "dropdown",`
			`options: %w[a b c],`
FEATURE: Implement new required options in admin user fields UI (#27079) We're planning to implement a feature that allows adding required fields for existing users. This PR does some preparatory refactoring to make that possible. There should be no changes to existing behaviour. Just a small update to the admin UI. 2024-05-23 19:18:25 +08:00			`requirement: "on_signup",`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`},`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`}`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00
DEV: Assert for 200 response code to avoid changing magic helper in the future. 2018-06-07 16:11:09 +08:00			`expect(response.status).to eq(200)`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`end.to change(UserField, :count).by(1)`
FEATURE: New "Dropdown" user field type 2015-07-29 00:29:40 +08:00
			`expect(UserFieldOption.count).to eq(3)`
			`end`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00			`end`

DEV: Extend specs coverage for non-admin access to admin endpoints (#18833) Replace base controller class inheritance specs with explicit specs for non-staff and moderator access to admin resources 2022-11-03 11:42:44 +08:00			`shared_examples "user field creation not allowed" do`
			`it "prevents creation with a 404 response" do`
			`expect do`
			`post "/admin/customize/user_fields.json",`
			`params: {`
			`user_field: {`
			`name: "hello",`
			`description: "hello desc",`
			`field_type: "text",`
			`},`
			`}`
			`end.not_to change { UserField.count }`

			`expect(response.status).to eq(404)`
			`expect(response.parsed_body["errors"]).to include(I18n.t("not_found"))`
			`end`
			`end`

			`context "when logged in as a moderator" do`
			`before { sign_in(moderator) }`

			`include_examples "user field creation not allowed"`
			`end`

			`context "when logged in as a non-staff user" do`
			`before { sign_in(user) }`

			`include_examples "user field creation not allowed"`
			`end`
			`end`

			`describe "#index" do`
DEV: Allow fab! without block (#24314) The most common thing that we do with fab! is: fab!(:thing) { Fabricate(:thing) } This commit adds a shorthand for this which is just simply: fab!(:thing) i.e. If you omit the block, then, by default, you'll get a `Fabricate`d object using the fabricator of the same name. 2023-11-10 06:47:59 +08:00			`fab!(:user_field)`
DEV: Extend specs coverage for non-admin access to admin endpoints (#18833) Replace base controller class inheritance specs with explicit specs for non-staff and moderator access to admin resources 2022-11-03 11:42:44 +08:00
			`context "when logged in as an admin" do`
			`before { sign_in(admin) }`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00
			`it "returns a list of user fields" do`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`get "/admin/customize/user_fields.json"`
DEV: Assert for 200 response code to avoid changing magic helper in the future. 2018-06-07 16:11:09 +08:00			`expect(response.status).to eq(200)`
DEV: Use `response.parsed_body` in specs (#9615) Most of it was autofixed with rubocop-discourse 2.1.1. 2020-05-07 23:04:12 +08:00			`json = response.parsed_body`
controllers with rspec3 syntax 2015-01-10 01:04:02 +08:00			`expect(json["user_fields"]).to be_present`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00			`end`
			`end`

DEV: Extend specs coverage for non-admin access to admin endpoints (#18833) Replace base controller class inheritance specs with explicit specs for non-staff and moderator access to admin resources 2022-11-03 11:42:44 +08:00			`shared_examples "user fields inaccessible" do`
			`it "denies access with a 404 response" do`
			`get "/admin/customize/user_fields.json"`

			`expect(response.status).to eq(404)`
			`expect(response.parsed_body["errors"]).to include(I18n.t("not_found"))`
			`expect(response.parsed_body["user_fields"]).to be_nil`
			`end`
			`end`

			`context "when logged in as a moderator" do`
			`before { sign_in(moderator) }`

			`include_examples "user fields inaccessible"`
			`end`

			`context "when logged in as a non-staff user" do`
			`before { sign_in(user) }`

			`include_examples "user fields inaccessible"`
			`end`
			`end`

			`describe "#destroy" do`
DEV: Allow fab! without block (#24314) The most common thing that we do with fab! is: fab!(:thing) { Fabricate(:thing) } This commit adds a shorthand for this which is just simply: fab!(:thing) i.e. If you omit the block, then, by default, you'll get a `Fabricate`d object using the fabricator of the same name. 2023-11-10 06:47:59 +08:00			`fab!(:user_field)`
DEV: Extend specs coverage for non-admin access to admin endpoints (#18833) Replace base controller class inheritance specs with explicit specs for non-staff and moderator access to admin resources 2022-11-03 11:42:44 +08:00
			`context "when logged in as an admin" do`
			`before { sign_in(admin) }`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00
FEATURE: Support for a `required` setting on user fields. 2014-10-09 02:38:18 +08:00			`it "deletes the user field" do`
controllers with rspec3 syntax 2015-01-10 01:04:02 +08:00			`expect {`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`delete "/admin/customize/user_fields/#{user_field.id}.json"`
DEV: Assert for 200 response code to avoid changing magic helper in the future. 2018-06-07 16:11:09 +08:00			`expect(response.status).to eq(200)`
controllers with rspec3 syntax 2015-01-10 01:04:02 +08:00			`}.to change(UserField, :count).by(-1)`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00			`end`
			`end`

DEV: Extend specs coverage for non-admin access to admin endpoints (#18833) Replace base controller class inheritance specs with explicit specs for non-staff and moderator access to admin resources 2022-11-03 11:42:44 +08:00			`shared_examples "user field deletion not allowed" do`
			`it "prevents deletion with a 404 response" do`
			`expect do delete "/admin/customize/user_fields/#{user_field.id}.json" end.not_to change {`
			`UserField.count`
			`}`

			`expect(response.status).to eq(404)`
			`expect(response.parsed_body["errors"]).to include(I18n.t("not_found"))`
			`end`
			`end`

			`context "when logged in as a moderator" do`
			`before { sign_in(moderator) }`

			`include_examples "user field deletion not allowed"`
			`end`

			`context "when logged in as a non-staff user" do`
			`before { sign_in(user) }`

			`include_examples "user field deletion not allowed"`
			`end`
			`end`

			`describe "#update" do`
DEV: Allow fab! without block (#24314) The most common thing that we do with fab! is: fab!(:thing) { Fabricate(:thing) } This commit adds a shorthand for this which is just simply: fab!(:thing) i.e. If you omit the block, then, by default, you'll get a `Fabricate`d object using the fabricator of the same name. 2023-11-10 06:47:59 +08:00			`fab!(:user_field)`
DEV: Extend specs coverage for non-admin access to admin endpoints (#18833) Replace base controller class inheritance specs with explicit specs for non-staff and moderator access to admin resources 2022-11-03 11:42:44 +08:00
			`context "when logged in as an admin" do`
			`before { sign_in(admin) }`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00
FEATURE: Support for a `required` setting on user fields. 2014-10-09 02:38:18 +08:00			`it "updates the user field" do`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`put "/admin/customize/user_fields/#{user_field.id}.json",`
			`params: {`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`user_field: {`
			`name: "fraggle",`
			`field_type: "confirm",`
			`description: "muppet",`
FEATURE: Implement new required options in admin user fields UI (#27079) We're planning to implement a feature that allows adding required fields for existing users. This PR does some preparatory refactoring to make that possible. There should be no changes to existing behaviour. Just a small update to the admin UI. 2024-05-23 19:18:25 +08:00			`requirement: "optional",`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`},`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`}`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00
DEV: Assert for 200 response code to avoid changing magic helper in the future. 2018-06-07 16:11:09 +08:00			`expect(response.status).to eq(200)`
FEATURE: Implement new required options in admin user fields UI (#27079) We're planning to implement a feature that allows adding required fields for existing users. This PR does some preparatory refactoring to make that possible. There should be no changes to existing behaviour. Just a small update to the admin UI. 2024-05-23 19:18:25 +08:00			`expect(user_field.reload).to have_attributes(`
			`name: "fraggle",`
			`field_type: "confirm",`
			`required?: false,`
			`)`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00			`end`
FEATURE: New "Dropdown" user field type 2015-07-29 00:29:40 +08:00
			`it "updates the user field options" do`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`put "/admin/customize/user_fields/#{user_field.id}.json",`
			`params: {`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`user_field: {`
			`name: "fraggle",`
			`field_type: "dropdown",`
			`description: "muppet",`
			`options: %w[hello hello world],`
			`},`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`}`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00
DEV: Assert for 200 response code to avoid changing magic helper in the future. 2018-06-07 16:11:09 +08:00			`expect(response.status).to eq(200)`
FEATURE: New "Dropdown" user field type 2015-07-29 00:29:40 +08:00			`user_field.reload`
			`expect(user_field.name).to eq("fraggle")`
			`expect(user_field.field_type).to eq("dropdown")`
			`expect(user_field.user_field_options.size).to eq(2)`
			`end`
Preserve user-field options when updating user-fields Avoid deleting options of the user-field when no options are transmitted. 2015-08-18 01:01:15 +08:00
			`it "keeps options when updating the user field" do`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`put "/admin/customize/user_fields/#{user_field.id}.json",`
			`params: {`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`user_field: {`
			`name: "fraggle",`
			`field_type: "dropdown",`
			`description: "muppet",`
			`options: %w[hello hello world],`
			`position: 1,`
			`},`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`}`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00
DEV: Assert for 200 response code to avoid changing magic helper in the future. 2018-06-07 16:11:09 +08:00			`expect(response.status).to eq(200)`
Preserve user-field options when updating user-fields Avoid deleting options of the user-field when no options are transmitted. 2015-08-18 01:01:15 +08:00			`user_field.reload`
			`expect(user_field.user_field_options.size).to eq(2)`

REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`put "/admin/customize/user_fields/#{user_field.id}.json",`
			`params: {`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00			`user_field: {`
			`name: "fraggle",`
			`field_type: "dropdown",`
			`description: "muppet",`
			`position: 2,`
			`},`
REFACTOR: admin user fields controller specs to requests (#5961) 2018-06-11 12:50:21 +08:00			`}`
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 12:06:56 +08:00
DEV: Assert for 200 response code to avoid changing magic helper in the future. 2018-06-07 16:11:09 +08:00			`expect(response.status).to eq(200)`
Preserve user-field options when updating user-fields Avoid deleting options of the user-field when no options are transmitted. 2015-08-18 01:01:15 +08:00			`user_field.reload`
			`expect(user_field.user_field_options.size).to eq(2)`
			`end`
FEATURE: Add user custom fields to user directory (#13238) 2021-06-08 01:34:01 +08:00
			`it "removes directory column record if not public" do`
			`next_position = DirectoryColumn.maximum("position") + 1`
			`DirectoryColumn.create(`
			`user_field_id: user_field.id,`
			`enabled: false,`
DEV: Plugin API to add directory columns (#13440) 2021-06-23 02:00:04 +08:00			`type: DirectoryColumn.types[:user_field],`
FEATURE: Add user custom fields to user directory (#13238) 2021-06-08 01:34:01 +08:00			`position: next_position,`
			`)`
			`expect {`
			`put "/admin/customize/user_fields/#{user_field.id}.json",`
			`params: {`
			`user_field: {`
			`show_on_profile: false,`
			`show_on_user_card: false,`
			`searchable: true,`
			`},`
			`}`
			`}.to change { DirectoryColumn.count }.by(-1)`
			`end`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00			`end`
DEV: Extend specs coverage for non-admin access to admin endpoints (#18833) Replace base controller class inheritance specs with explicit specs for non-staff and moderator access to admin resources 2022-11-03 11:42:44 +08:00
			`shared_examples "user field update not allowed" do`
			`it "prevents updates with a 404 response" do`
			`user_field.reload`
			`original_name = user_field.name`

			`put "/admin/customize/user_fields/#{user_field.id}.json",`
			`params: {`
			`user_field: {`
			`name: "fraggle",`
			`field_type: "confirm",`
			`description: "muppet",`
			`},`
			`}`

			`expect(response.status).to eq(404)`
			`expect(response.parsed_body["errors"]).to include(I18n.t("not_found"))`

			`user_field.reload`
			`expect(user_field.name).to eq(original_name)`
			`end`
			`end`

			`context "when logged in as a moderator" do`
			`before { sign_in(moderator) }`

			`include_examples "user field update not allowed"`
			`end`

			`context "when logged in as a non-staff user" do`
			`before { sign_in(user) }`

			`include_examples "user field update not allowed"`
			`end`
FEATURE: Admin interface for adding custom fields for users 2014-09-25 23:32:08 +08:00			`end`
			`end`