baarkerlounger
/
submit-social-housing-lettings-and-sales-data
mirror of https://github.com/communitiesuk/submit-social-housing-lettings-and-sales-data.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Case log index page only shows your organisations case logs

pull/114/head
baarkerlounger 4 years ago
parent
4f177d4deb
commit
d2ba107937
3 changed files with 52 additions and 24 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 4
      app/controllers/case_logs_controller.rb
  2. 35
      spec/requests/case_log_controller_spec.rb
  3. 7
      spec/support/controller_macros.rb

4
app/controllers/case_logs_controller.rb
Unescape View File

@ -4,8 +4,8 @@ class CaseLogsController < ApplicationController
before_action :authenticate_user!, unless: :json_api_request?
def index
@completed_case_logs = CaseLog.completed
@in_progress_case_logs = CaseLog.not_completed
@completed_case_logs = current_user.completed_case_logs
@in_progress_case_logs = current_user.not_completed_case_logs
end
def create

35
spec/requests/case_log_controller_spec.rb
Unescape View File

@ -113,6 +113,40 @@ RSpec.describe CaseLogsController, type: :request do
end
describe "GET" do
context "collection" do
let(:user) { FactoryBot.create(:user) }
let(:organisation) { user.organisation }
let(:other_organisation) { FactoryBot.create(:organisation) }
let!(:case_log) do
FactoryBot.create(
:case_log,
owning_organisation: organisation,
managing_organisation: organisation,
)
end
let!(:unauthorized_case_log) do
FactoryBot.create(
:case_log,
owning_organisation: other_organisation,
managing_organisation: other_organisation,
)
end
let(:headers) { { "Accept" => "text/html" } }
before do
sign_in user
get "/case_logs", headers: headers, params: {}
end
it "only shows case logs for your organisation" do
expected_case_row_log = "<a class=\"govuk-link\" href=\"/case_logs/#{case_log.id}\">#{case_log.id}</a>"
unauthorized_case_row_log = "<a class=\"govuk-link\" href=\"/case_logs/#{unauthorized_case_log.id}\">#{unauthorized_case_log.id}</a>"
expect(CGI.unescape_html(response.body)).to include(expected_case_row_log)
expect(CGI.unescape_html(response.body)).not_to include(unauthorized_case_row_log)
end
end
context "member" do
let(:case_log) { FactoryBot.create(:case_log, :completed) }
let(:id) { case_log.id }
@ -137,6 +171,7 @@ RSpec.describe CaseLogsController, type: :request do
end
end
end
end
describe "PATCH" do
let(:case_log) do

7
spec/support/controller_macros.rb
Unescape View File

@ -1,11 +1,4 @@
module ControllerMacros
# def login_admin
# before(:each) do
# @request.env["devise.mapping"] = Devise.mappings[:admin]
# sign_in FactoryBot.create(:admin) # Using factory bot as an example
# end
# end
def login_user
before(:each) do
@request.env["devise.mapping"] = Devise.mappings[:user]

Write Preview
Loading…
Cancel
Save