baarkerlounger
/
submit-social-housing-lettings-and-sales-data
mirror of https://github.com/communitiesuk/submit-social-housing-lettings-and-sales-data.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Merge branch 'CLDC-531-API' into validations_in_controller

pull/44/head
baarkerlounger 4 years ago
parent
87b5e54a47 5697302799
commit
b4f6749d4f
2 changed files with 34 additions and 5 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 11
      app/controllers/case_logs_controller.rb
  2. 28
      spec/requests/case_log_controller_spec.rb

11
app/controllers/case_logs_controller.rb
Unescape View File

@ -1,5 +1,6 @@
class CaseLogsController < ApplicationController class CaseLogsController < ApplicationController
skip_before_action :verify_authenticity_token skip_before_action :verify_authenticity_token, only: [:create], if: :json_request?
before_action :authenticate, only: [:create], if: :json_request?
def index def index
@submitted_case_logs = CaseLog.where(status: 1) @submitted_case_logs = CaseLog.where(status: 1)
@ -78,6 +79,14 @@ private
end end
end end
def json_request?
request.format.json?
end
def authenticate
http_basic_authenticate_or_request_with name: ENV["API_USER"], password: ENV["API_KEY"]
end
def create_params def create_params
return {} unless params[:case_log] return {} unless params[:case_log]

28
spec/requests/case_log_controller_spec.rb
Unescape View File

@ -2,17 +2,24 @@ require "rails_helper"
RSpec.describe CaseLogsController, type: :request do RSpec.describe CaseLogsController, type: :request do
describe "POST #create" do describe "POST #create" do
let(:tenant_code) { "T365" }
let(:tenant_age) { 35 }
let(:property_postcode) { "SE11 6TY" }
let(:api_username) { "test_user" }
let(:api_password) { "test_password" }
let(:basic_credentials) do
ActionController::HttpAuthentication::Basic
.encode_credentials(api_username, api_password)
end
let(:headers) do let(:headers) do
{ {
"Content-Type" => "application/json", "Content-Type" => "application/json",
"Accept" => "application/json", "Accept" => "application/json",
"Authorization" => basic_credentials,
} }
end end
let(:tenant_code) { "T365" }
let(:tenant_age) { 35 }
let(:property_postcode) { "SE11 6TY" }
let(:params) do let(:params) do
{ {
"tenant_code": tenant_code, "tenant_code": tenant_code,
@ -22,6 +29,9 @@ RSpec.describe CaseLogsController, type: :request do
end end
before do before do
allow(ENV).to receive(:[])
allow(ENV).to receive(:[]).with("API_USER").and_return(api_username)
allow(ENV).to receive(:[]).with("API_KEY").and_return(api_password)
post "/case_logs", headers: headers, params: params.to_json post "/case_logs", headers: headers, params: params.to_json
end end
@ -50,5 +60,15 @@ RSpec.describe CaseLogsController, type: :request do
expect(json_response["errors"]).to eq(["Tenant age Tenant age must be between 0 and 100"]) expect(json_response["errors"]).to eq(["Tenant age Tenant age must be between 0 and 100"])
end end
end end
context "request with invalid credentials" do
let(:basic_credentials) do
ActionController::HttpAuthentication::Basic.encode_credentials(api_username, "Oops")
end
it "returns 401" do
expect(response).to have_http_status(:unauthorized)
end
end
end end
end end

Write Preview
Loading…
Cancel
Save