Add view tests for project sidebar - security

This commits adds tests to verify that the template partials responsible for rendering the 'Security & Compliance' navigation are rendering the correct nav-items based on users permission.

Add view tests for project sidebar - security
This commits adds tests to verify that the template partials responsible for rendering the 'Security & Compliance' navigation are rendering the correct nav-items based on users permission.
035cb6d1 · Dave Pisek · 3ca312d3 · 035cb6d1
Commit 035cb6d1 authored Sep 09, 2019 by Dave Pisek
Show whitespace changes
Inline Side-by-side

Showing with 76 additions and 0 deletions

ee/spec/views/layouts/nav/sidebar/_project.html.haml_spec.rb ee/spec/views/layouts/nav/sidebar/_project.html.haml_spec.rb +76 -0

No files found.
--- a/ee/spec/views/layouts/nav/sidebar/_project.html.haml_spec.rb
+++ b/ee/spec/views/layouts/nav/sidebar/_project.html.haml_spec.rb
@@ -122,6 +122,82 @@ describe 'layouts/nav/sidebar/_project' do
    end
  end
+  describe 'Security and Compliance' do
+    before do
+      allow(view).to receive(:can?).with(nil, :read_dependencies, project).and_return(can_read_dependencies)
+      allow(view).to receive(:can?).with(nil, :read_project_security_dashboard, project).and_return(can_read_dashboard)
+      render
+    end
+    describe 'when the user has full permissions' do
+      let(:can_read_dashboard) { true }
+      let(:can_read_dependencies) { true }
+      it 'top level navigation link is visible' do
+        expect(rendered).to have_link('Security & Compliance', href: project_security_dashboard_path(project))
+      end
+      it 'security dashboard link is visible' do
+        expect(rendered).to have_link('Security Dashboard', href: project_security_dashboard_path(project))
+      end
+      it 'dependency list link is visible' do
+        expect(rendered).to have_link('Dependency List', href: project_dependencies_path(project))
+      end
+    end
+    describe 'when the user can view only security dashboard' do
+      let(:can_read_dashboard) { true }
+      let(:can_read_dependencies) { false }
+      it 'top level navigation link is visible' do
+        expect(rendered).to have_link('Security & Compliance', href: project_security_dashboard_path(project))
+      end
+      it 'security dashboard link is visible' do
+        expect(rendered).to have_link('Security Dashboard', href: project_security_dashboard_path(project))
+      end
+      it 'dependency list link is not visible' do
+        expect(rendered).not_to have_link('Dependency List', href: project_dependencies_path(project))
+      end
+    end
+    describe 'when the user can view only dependency list' do
+      let(:can_read_dashboard) { false }
+      let(:can_read_dependencies) { true }
+      it 'top level navigation link is visible' do
+        expect(rendered).to have_link('Security & Compliance', href: project_dependencies_path(project))
+      end
+      it 'security dashboard link is not visible' do
+        expect(rendered).not_to have_link('Security Dashboard', href: project_security_dashboard_path(project))
+      end
+      it 'dependency list link is visible' do
+        expect(rendered).to have_link('Dependency List', href: project_dependencies_path(project))
+      end
+    end
+    describe 'when the user has no permissions' do
+      let(:can_read_dependencies) { false }
+      let(:can_read_dashboard) { false }
+      it 'top level navigation link is visible' do
+        expect(rendered).not_to have_link('Security & Compliance', href: project_security_dashboard_path(project))
+      end
+      it 'security dashboard link is not visible' do
+        expect(rendered).not_to have_link('Security Dashboard', href: project_security_dashboard_path(project))
+      end
+      it 'dependency list link is not visible' do
+        expect(rendered).not_to have_link('Dependency List', href: project_dependencies_path(project))
+      end
+    end
+  end
  describe 'Packages' do
    let(:user) { create(:user) }