Add tests for API project permissions info

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>

Add tests for API project permissions info
Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Dmitriy Zaporozhets
1 parent 0ea0e542
Showing 2 changed files with 26 additions and 1 deletions Show diff stats
lib/api/entities.rb
spec/requests/api/projects_spec.rb
@@ -181,7 +181,9 @@ module API
         end
         expose :group_access, using: Entities::GroupAccess do |project, options|
-          project.group.users_groups.find_by(user_id: options[:user].id)
+          if project.group
+            project.group.users_groups.find_by(user_id: options[:user].id)
+          end
         end
       end
     end
@@ -259,6 +259,7 @@ describe API::API do
   describe "GET /projects/:id" do
     before { project }
+    before { users_project }
     it "should return a project by id" do
       get api("/projects/#{project.id}", user)
@@ -284,6 +285,28 @@ describe API::API do
       get api("/projects/#{project.id}", other_user)
       response.status.should == 404
     end
+
+    describe 'permissions' do
+      context 'personal project' do
+        before { get api("/projects/#{project.id}", user) }
+
+        it { response.status.should == 200 }
+        it { json_response['permissions']["project_access"]["access_level"].should == Gitlab::Access::MASTER }
+        it { json_response['permissions']["group_access"].should be_nil }
+      end
+
+      context 'group project' do
+        before do
+          project2 = create(:project, group: create(:group))
+          project2.group.add_owner(user)
+          get api("/projects/#{project2.id}", user)
+        end
+
+        it { response.status.should == 200 }
+        it { json_response['permissions']["project_access"].should be_nil }
+        it { json_response['permissions']["group_access"]["access_level"].should == Gitlab::Access::OWNER }
+      end
+    end
   end
   describe "GET /projects/:id/events" do
	@@ -259,6 +259,7 @@ describe API::API do		@@ -259,6 +259,7 @@ describe API::API do
259		259
260	describe "GET /projects/:id" do	260	describe "GET /projects/:id" do
261	before { project }	261	before { project }
		262	+ before { users_project }
262		263
263	it "should return a project by id" do	264	it "should return a project by id" do
264	get api("/projects/#{project.id}", user)	265	get api("/projects/#{project.id}", user)
	@@ -284,6 +285,28 @@ describe API::API do		@@ -284,6 +285,28 @@ describe API::API do
284	get api("/projects/#{project.id}", other_user)	285	get api("/projects/#{project.id}", other_user)
285	response.status.should == 404	286	response.status.should == 404
286	end	287	end
		288	+
		289	+ describe 'permissions' do
		290	+ context 'personal project' do
		291	+ before { get api("/projects/#{project.id}", user) }
		292	+
		293	+ it { response.status.should == 200 }
		294	+ it { json_response['permissions']["project_access"]["access_level"].should == Gitlab::Access::MASTER }
		295	+ it { json_response['permissions']["group_access"].should be_nil }
		296	+ end
		297	+
		298	+ context 'group project' do
		299	+ before do
		300	+ project2 = create(:project, group: create(:group))
		301	+ project2.group.add_owner(user)
		302	+ get api("/projects/#{project2.id}", user)
		303	+ end
		304	+
		305	+ it { response.status.should == 200 }
		306	+ it { json_response['permissions']["project_access"].should be_nil }
		307	+ it { json_response['permissions']["group_access"]["access_level"].should == Gitlab::Access::OWNER }
		308	+ end
		309	+ end
287	end	310	end
288		311
289	describe "GET /projects/:id/events" do	312	describe "GET /projects/:id/events" do