87 lines
3.1 KiB
87 lines
3.1 KiB
require "rails_helper" |
|
require_relative "../../support/devise" |
|
|
|
RSpec.describe Auth::ConfirmationsController, type: :request do |
|
let(:page) { Capybara::Node::Simple.new(response.body) } |
|
let(:notify_client) { instance_double(Notifications::Client) } |
|
let(:devise_notify_mailer) { DeviseNotifyMailer.new } |
|
let(:user) { FactoryBot.create(:user, :data_provider, sign_in_count: 0, confirmed_at: nil, initial_confirmation_sent: nil) } |
|
|
|
before do |
|
allow(DeviseNotifyMailer).to receive(:new).and_return(devise_notify_mailer) |
|
allow(devise_notify_mailer).to receive(:notify_client).and_return(notify_client) |
|
allow(notify_client).to receive(:send_email).and_return(true) |
|
end |
|
|
|
context "when a confirmation link is clicked by a new user" do |
|
before do |
|
user.send_confirmation_instructions |
|
get "/account/confirmation?confirmation_token=#{user.confirmation_token}" |
|
end |
|
|
|
it "marks the user as confirmed" do |
|
expect(user.reload.confirmed_at).to be_a(Time) |
|
end |
|
|
|
it "redirects to the set password page" do |
|
follow_redirect! |
|
expect(page).to have_content(I18n.t("user.create_password")) |
|
end |
|
end |
|
|
|
context "when the token has expired" do |
|
let(:period) { Devise::TimeInflector.time_ago_in_words(User.confirm_within.ago) } |
|
|
|
before do |
|
user.send_confirmation_instructions |
|
allow(User).to receive(:find_first_by_auth_conditions).and_return(user) |
|
allow(user).to receive(:confirmation_period_expired?).and_return(true) |
|
get "/account/confirmation?confirmation_token=#{user.confirmation_token}" |
|
end |
|
|
|
it "shows the expired page" do |
|
expect(page).to have_content("Your join link has expired. Select the button below to get a new one. The link will be valid for 24 hours.") |
|
end |
|
end |
|
|
|
context "when the token is blank" do |
|
before do |
|
user.send_confirmation_instructions |
|
get "/account/confirmation" |
|
end |
|
|
|
it "shows the invalid page" do |
|
expect(page).to have_content("It looks like you have requested a newer join link than this one. Check your emails and follow the most recent link instead.") |
|
end |
|
end |
|
|
|
context "when the token is invalid" do |
|
before do |
|
user.send_confirmation_instructions |
|
get "/account/confirmation?confirmation_token=SOMETHING_INVALID" |
|
end |
|
|
|
it "shows the invalid page" do |
|
expect(page).to have_content("It looks like you have requested a newer join link than this one. Check your emails and follow the most recent link instead.") |
|
end |
|
end |
|
|
|
context "when the user has already been confirmed" do |
|
let(:user) { FactoryBot.create(:user, :data_provider, sign_in_count: 0, confirmed_at: Time.zone.now) } |
|
|
|
before do |
|
user.send_confirmation_instructions |
|
get "/account/confirmation?confirmation_token=#{user.confirmation_token}" |
|
end |
|
|
|
it "redirects to the login page" do |
|
follow_redirect! |
|
expect(page).to have_content("Sign in to your account to submit CORE data") |
|
end |
|
|
|
it "does not show an error message" do |
|
follow_redirect! |
|
expect(page).not_to have_selector(".govuk-error-summary__title") |
|
end |
|
end |
|
end
|
|
|