279 lines
8.4 KiB
Ruby
279 lines
8.4 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
require "spec_helper"
|
|
|
|
describe Api::V1::LikesController do
|
|
let(:auth) {
|
|
FactoryGirl.create(
|
|
:auth_with_default_scopes,
|
|
scopes: %w[openid public:read public:modify private:read private:modify interactions]
|
|
)
|
|
}
|
|
|
|
let(:auth_public_only) {
|
|
FactoryGirl.create(
|
|
:auth_with_default_scopes,
|
|
scopes: %w[openid public:read public:modify interactions]
|
|
)
|
|
}
|
|
|
|
let(:auth_minimum_scopes) {
|
|
FactoryGirl.create(:auth_with_default_scopes)
|
|
}
|
|
|
|
let!(:access_token) { auth.create_access_token.to_s }
|
|
let!(:access_token_public_only) { auth_public_only.create_access_token.to_s }
|
|
let!(:access_token_minimum_scopes) { auth_minimum_scopes.create_access_token.to_s }
|
|
let(:invalid_token) { SecureRandom.hex(9) }
|
|
|
|
before do
|
|
@status = auth.user.post(
|
|
:status_message,
|
|
text: "This is a status message",
|
|
public: true,
|
|
to: "all"
|
|
)
|
|
|
|
aspect = auth_public_only.user.aspects.create(name: "first aspect")
|
|
@private_status = auth_public_only.user.post(
|
|
"Post",
|
|
status_message: {text: "This is a private status message"},
|
|
public: false,
|
|
to: [aspect.id],
|
|
type: "Post"
|
|
)
|
|
end
|
|
|
|
describe "#show" do
|
|
context "with right post id" do
|
|
it "succeeds in getting empty likes" do
|
|
get(
|
|
api_v1_post_likes_path(post_id: @status.guid),
|
|
params: {access_token: access_token_minimum_scopes}
|
|
)
|
|
expect(response.status).to eq(200)
|
|
likes = response_body_data(response)
|
|
expect(likes.length).to eq(0)
|
|
end
|
|
|
|
it "succeeds in getting post with likes" do
|
|
like_service(bob).create(@status.guid)
|
|
like_service(auth.user).create(@status.guid)
|
|
like_service(alice).create(@status.guid)
|
|
get(
|
|
api_v1_post_likes_path(post_id: @status.guid),
|
|
params: {access_token: access_token_minimum_scopes}
|
|
)
|
|
expect(response.status).to eq(200)
|
|
likes = response_body_data(response)
|
|
expect(likes.length).to eq(3)
|
|
confirm_like_format(likes, alice)
|
|
confirm_like_format(likes, bob)
|
|
confirm_like_format(likes, auth.user)
|
|
end
|
|
end
|
|
|
|
context "with wrong post id" do
|
|
it "fails at getting likes" do
|
|
get(
|
|
api_v1_post_likes_path(post_id: "badguid"),
|
|
params: {access_token: access_token}
|
|
)
|
|
expect(response.status).to eq(404)
|
|
expect(response.body).to eq(I18n.t("api.endpoint_errors.posts.post_not_found"))
|
|
end
|
|
end
|
|
|
|
context "with improper credentials" do
|
|
context "without private:read scope in token" do
|
|
it "fails at getting likes" do
|
|
get(
|
|
api_v1_post_likes_path(post_id: @private_status.guid),
|
|
params: {access_token: access_token_public_only}
|
|
)
|
|
expect(response.status).to eq(422)
|
|
expect(response.body).to eq(I18n.t("api.endpoint_errors.likes.user_not_allowed_to_like"))
|
|
end
|
|
end
|
|
|
|
it "fails without valid token" do
|
|
get(
|
|
api_v1_post_likes_path(post_id: @private_status.guid),
|
|
params: {access_token: invalid_token}
|
|
)
|
|
expect(response.status).to eq(401)
|
|
end
|
|
end
|
|
end
|
|
|
|
describe "#create" do
|
|
context "with right post id" do
|
|
it "succeeeds in liking post" do
|
|
post(
|
|
api_v1_post_likes_path(post_id: @status.guid),
|
|
params: {access_token: access_token}
|
|
)
|
|
expect(response.status).to eq(204)
|
|
likes = like_service.find_for_post(@status.guid)
|
|
expect(likes.length).to eq(1)
|
|
expect(likes[0].author.id).to eq(auth.user.person.id)
|
|
end
|
|
|
|
it "fails in liking already liked post" do
|
|
post(
|
|
api_v1_post_likes_path(post_id: @status.guid),
|
|
params: {access_token: access_token}
|
|
)
|
|
expect(response.status).to eq(204)
|
|
|
|
post(
|
|
api_v1_post_likes_path(post_id: @status.guid),
|
|
params: {access_token: access_token}
|
|
)
|
|
expect(response.status).to eq(422)
|
|
expect(response.body).to eq(I18n.t("api.endpoint_errors.likes.like_exists"))
|
|
|
|
likes = like_service.find_for_post(@status.guid)
|
|
expect(likes.length).to eq(1)
|
|
expect(likes[0].author.id).to eq(auth.user.person.id)
|
|
end
|
|
end
|
|
|
|
context "with wrong post id" do
|
|
it "fails at liking post" do
|
|
post(
|
|
api_v1_post_likes_path(post_id: 99_999_999),
|
|
params: {access_token: access_token}
|
|
)
|
|
expect(response.status).to eq(404)
|
|
expect(response.body).to eq(I18n.t("api.endpoint_errors.posts.post_not_found"))
|
|
end
|
|
end
|
|
|
|
context "with improper credentials" do
|
|
it "fails in liking private post without private:read" do
|
|
post(
|
|
api_v1_post_likes_path(post_id: @private_status.guid),
|
|
params: {access_token: access_token_public_only}
|
|
)
|
|
expect(response.status).to eq(422)
|
|
end
|
|
|
|
it "fails in liking post without interactions" do
|
|
post(
|
|
api_v1_post_likes_path(post_id: @private_status.guid),
|
|
params: {access_token: access_token_minimum_scopes}
|
|
)
|
|
expect(response.status).to eq(403)
|
|
end
|
|
|
|
it "fails without valid token" do
|
|
get(
|
|
api_v1_post_likes_path(post_id: @private_status.guid),
|
|
params: {access_token: invalid_token}
|
|
)
|
|
expect(response.status).to eq(401)
|
|
end
|
|
end
|
|
end
|
|
|
|
describe "#delete" do
|
|
before do
|
|
like_service.create(@status.guid)
|
|
end
|
|
|
|
context "with right post id" do
|
|
it "succeeds at unliking post" do
|
|
delete(
|
|
api_v1_post_likes_path(post_id: @status.guid),
|
|
params: {access_token: access_token}
|
|
)
|
|
expect(response.status).to eq(204)
|
|
likes = like_service.find_for_post(@status.guid)
|
|
expect(likes.length).to eq(0)
|
|
end
|
|
|
|
it "fails at unliking post user didn't like" do
|
|
delete(
|
|
api_v1_post_likes_path(post_id: @status.guid),
|
|
params: {access_token: access_token}
|
|
)
|
|
expect(response.status).to eq(204)
|
|
|
|
delete(
|
|
api_v1_post_likes_path(post_id: @status.guid),
|
|
params: {access_token: access_token}
|
|
)
|
|
expect(response.status).to eq(404)
|
|
expect(response.body).to eq(I18n.t("api.endpoint_errors.likes.no_like"))
|
|
|
|
likes = like_service.find_for_post(@status.guid)
|
|
expect(likes.length).to eq(0)
|
|
end
|
|
end
|
|
|
|
context "with wrong post id" do
|
|
it "fails at unliking post" do
|
|
delete(
|
|
api_v1_post_likes_path(post_id: 99_999_999),
|
|
params: {access_token: access_token}
|
|
)
|
|
expect(response.status).to eq(404)
|
|
expect(response.body).to eq(I18n.t("api.endpoint_errors.posts.post_not_found"))
|
|
end
|
|
end
|
|
|
|
context "with improper credentials" do
|
|
it "fails at unliking private post without private:read" do
|
|
like_service(auth_public_only.user).create(@private_status.guid)
|
|
delete(
|
|
api_v1_post_likes_path(post_id: @private_status.guid),
|
|
params: {access_token: access_token}
|
|
)
|
|
expect(response.status).to eq(404)
|
|
expect(response.body).to eq(I18n.t("api.endpoint_errors.posts.post_not_found"))
|
|
end
|
|
|
|
it "fails in unliking post without interactions" do
|
|
like_service(auth_minimum_scopes.user).create(@status.guid)
|
|
delete(
|
|
api_v1_post_likes_path(post_id: @status.guid),
|
|
params: {access_token: access_token_minimum_scopes}
|
|
)
|
|
expect(response.status).to eq(403)
|
|
end
|
|
|
|
it "fails without valid token" do
|
|
get(
|
|
api_v1_post_likes_path(post_id: @private_status.guid),
|
|
params: {access_token: invalid_token}
|
|
)
|
|
expect(response.status).to eq(401)
|
|
end
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
# rubocop:disable Metrics/AbcSize
|
|
def confirm_like_format(likes, user)
|
|
like = likes.find {|like_element| like_element["author"]["guid"] == user.guid }
|
|
author = like["author"]
|
|
expect(author["diaspora_id"]).to eq(user.diaspora_handle)
|
|
expect(author["name"]).to eq(user.name)
|
|
expect(author["avatar"]).to eq(user.profile.image_url)
|
|
end
|
|
# rubocop:enable Metrics/AbcSize
|
|
|
|
def like_service(user=auth.user)
|
|
LikeService.new(user)
|
|
end
|
|
|
|
def response_body(response)
|
|
JSON.parse(response.body)
|
|
end
|
|
|
|
def response_body_data(response)
|
|
JSON.parse(response.body)["data"]
|
|
end
|
|
end
|