discourse/spec/requests/admin/screened_urls_controller_spec.rb
Selase Krakani 52be5b3782
DEV: Extend specs coverage for non-admin access to admin endpoints (#18833)
Replace base controller class inheritance specs with explicit specs
for non-staff and moderator access to admin resources
2022-11-03 03:42:44 +00:00

44 lines
1.1 KiB
Ruby

# frozen_string_literal: true
RSpec.describe Admin::ScreenedUrlsController do
fab!(:admin) { Fabricate(:admin) }
fab!(:moderator) { Fabricate(:moderator) }
fab!(:user) { Fabricate(:user) }
fab!(:screened_url) { Fabricate(:screened_url) }
describe '#index' do
shared_examples "screened urls accessible" do
it "returns screened urls" do
get "/admin/logs/screened_urls.json"
expect(response.status).to eq(200)
json = response.parsed_body
expect(json.size).to eq(1)
end
end
context "when logged in as an admin" do
before { sign_in(admin) }
include_examples "screened urls accessible"
end
context "when logged in as a moderator" do
before { sign_in(moderator) }
include_examples "screened urls accessible"
end
context "when logged in as a non-staff user" do
before { sign_in(user) }
it "denies access with a 404 response" do
get "/admin/logs/screened_urls.json"
expect(response.status).to eq(404)
expect(response.parsed_body["errors"]).to include(I18n.t("not_found"))
end
end
end
end