Skip to content

G
gitlab-ce
Commit e77bd057 authored by Victor Zagorodny's avatar Victor Zagorodny
Browse files
Options

Improve code and comments in shared examples

parent 1eb03ae1
Hide whitespace changes
Inline Side-by-side
Showing with 14 additions and 8 deletions
ee/spec/support/shared_examples/requests/api/vulnerabilities_shared_examples.rb
View file @ e77bd057
...@@ -83,10 +83,16 @@ shared_examples 'getting list of vulnerability findings' do ...@@ -83,10 +83,16 @@ shared_examples 'getting list of vulnerability findings' do
project.add_developer(user) project.add_developer(user)
end end
# Because fixture reports that power :ee_ci_job_artifact factory contain long report lists,
# we need to make sure that all occurrences for both SAST and Dependency Scanning are included in the response.
# That's why the page size is 40.
let(:pagination) { { per_page: 40 } }
it 'returns all non-dismissed vulnerabilities' do it 'returns all non-dismissed vulnerabilities' do
# all occurrences except one that was dismissed
occurrence_count = (sast_report.occurrences.count + ds_report.occurrences.count - 1).to_s occurrence_count = (sast_report.occurrences.count + ds_report.occurrences.count - 1).to_s
get api(project_vulnerabilities_path, user), params: { per_page: 40 } get api(project_vulnerabilities_path, user), params: pagination
expect(response).to have_gitlab_http_status(200) expect(response).to have_gitlab_http_status(200)
expect(response).to include_pagination_headers expect(response).to include_pagination_headers
...@@ -107,7 +113,7 @@ shared_examples 'getting list of vulnerability findings' do ...@@ -107,7 +113,7 @@ shared_examples 'getting list of vulnerability findings' do
describe 'filtering' do describe 'filtering' do
it 'returns vulnerabilities with sast report_type' do it 'returns vulnerabilities with sast report_type' do
occurrence_count = (sast_report.occurrences.count - 1).to_s occurrence_count = (sast_report.occurrences.count - 1).to_s # all SAST occurrences except one that was dismissed
get api(project_vulnerabilities_path, user), params: { report_type: 'sast' } get api(project_vulnerabilities_path, user), params: { report_type: 'sast' }
...@@ -147,7 +153,7 @@ shared_examples 'getting list of vulnerability findings' do ...@@ -147,7 +153,7 @@ shared_examples 'getting list of vulnerability findings' do
it 'returns dismissed vulnerabilities with `all` scope' do it 'returns dismissed vulnerabilities with `all` scope' do
occurrence_count = (sast_report.occurrences.count + ds_report.occurrences.count).to_s occurrence_count = (sast_report.occurrences.count + ds_report.occurrences.count).to_s
get api(project_vulnerabilities_path, user), params: { per_page: 40, scope: 'all' } get api(project_vulnerabilities_path, user), params: { scope: 'all' }.merge(pagination)
expect(response).to have_gitlab_http_status(200) expect(response).to have_gitlab_http_status(200)
...@@ -155,7 +161,7 @@ shared_examples 'getting list of vulnerability findings' do ...@@ -155,7 +161,7 @@ shared_examples 'getting list of vulnerability findings' do
end end
it 'returns vulnerabilities with low severity' do it 'returns vulnerabilities with low severity' do
get api(project_vulnerabilities_path, user), params: { per_page: 40, severity: 'low' } get api(project_vulnerabilities_path, user), params: { severity: 'low' }.merge(pagination)
expect(response).to have_gitlab_http_status(200) expect(response).to have_gitlab_http_status(200)
...@@ -169,7 +175,7 @@ shared_examples 'getting list of vulnerability findings' do ...@@ -169,7 +175,7 @@ shared_examples 'getting list of vulnerability findings' do
end end
it 'returns vulnerabilities with high confidence' do it 'returns vulnerabilities with high confidence' do
get api(project_vulnerabilities_path, user), params: { per_page: 40, confidence: 'high' } get api(project_vulnerabilities_path, user), params: { confidence: 'high' }.merge(pagination)
expect(response).to have_gitlab_http_status(200) expect(response).to have_gitlab_http_status(200)
...@@ -186,7 +192,7 @@ shared_examples 'getting list of vulnerability findings' do ...@@ -186,7 +192,7 @@ shared_examples 'getting list of vulnerability findings' do
it 'returns vulnerabilities from supplied pipeline' do it 'returns vulnerabilities from supplied pipeline' do
occurrence_count = (sast_report.occurrences.count + ds_report.occurrences.count - 1).to_s occurrence_count = (sast_report.occurrences.count + ds_report.occurrences.count - 1).to_s
get api(project_vulnerabilities_path, user), params: { per_page: 40, pipeline_id: pipeline.id } get api(project_vulnerabilities_path, user), params: { pipeline_id: pipeline.id }.merge(pagination)
expect(response).to have_gitlab_http_status(200) expect(response).to have_gitlab_http_status(200)
...@@ -195,7 +201,7 @@ shared_examples 'getting list of vulnerability findings' do ...@@ -195,7 +201,7 @@ shared_examples 'getting list of vulnerability findings' do
context 'pipeline has no reports' do context 'pipeline has no reports' do
it 'returns empty results' do it 'returns empty results' do
get api(project_vulnerabilities_path, user), params: { per_page: 40, pipeline_id: pipeline_without_vulnerabilities.id } get api(project_vulnerabilities_path, user), params: { pipeline_id: pipeline_without_vulnerabilities.id }.merge(pagination)
expect(json_response).to eq [] expect(json_response).to eq []
end end
...@@ -203,7 +209,7 @@ shared_examples 'getting list of vulnerability findings' do ...@@ -203,7 +209,7 @@ shared_examples 'getting list of vulnerability findings' do
context 'with unknown pipeline' do context 'with unknown pipeline' do
it 'returns empty results' do it 'returns empty results' do
get api(project_vulnerabilities_path, user), params: { per_page: 40, pipeline_id: 0 } get api(project_vulnerabilities_path, user), params: { pipeline_id: 0 }.merge(pagination)
expect(json_response).to eq [] expect(json_response).to eq []
end end
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7