125 lines
2.4 KiB
Ruby
125 lines
2.4 KiB
Ruby
require 'spec_helper'
|
|
|
|
describe Gitlab::API do
|
|
include ApiHelpers
|
|
|
|
let(:user) { create(:user) }
|
|
let(:key) { create(:key, user: user) }
|
|
let(:project) { create(:project) }
|
|
|
|
describe "GET /internal/check", no_db: true do
|
|
it do
|
|
get api("/internal/check")
|
|
|
|
response.status.should == 200
|
|
json_response['api_version'].should == Gitlab::API.version
|
|
end
|
|
end
|
|
|
|
describe "GET /internal/discover" do
|
|
it do
|
|
get(api("/internal/discover"), key_id: key.id)
|
|
|
|
response.status.should == 200
|
|
|
|
json_response['email'].should == user.email
|
|
end
|
|
end
|
|
|
|
describe "GET /internal/allowed" do
|
|
context "access granted" do
|
|
before do
|
|
project.team << [user, :developer]
|
|
end
|
|
|
|
context "git pull" do
|
|
it do
|
|
pull(key, project)
|
|
|
|
response.status.should == 200
|
|
response.body.should == 'true'
|
|
end
|
|
end
|
|
|
|
context "git push" do
|
|
it do
|
|
push(key, project)
|
|
|
|
response.status.should == 200
|
|
response.body.should == 'true'
|
|
end
|
|
end
|
|
end
|
|
|
|
context "access denied" do
|
|
before do
|
|
project.team << [user, :guest]
|
|
end
|
|
|
|
context "git pull" do
|
|
it do
|
|
pull(key, project)
|
|
|
|
response.status.should == 200
|
|
response.body.should == 'false'
|
|
end
|
|
end
|
|
|
|
context "git push" do
|
|
it do
|
|
push(key, project)
|
|
|
|
response.status.should == 200
|
|
response.body.should == 'false'
|
|
end
|
|
end
|
|
end
|
|
|
|
context "blocked user" do
|
|
let(:personal_project) { create(:project, namespace: user.namespace) }
|
|
|
|
before do
|
|
user.block
|
|
end
|
|
|
|
context "git pull" do
|
|
it do
|
|
pull(key, personal_project)
|
|
|
|
response.status.should == 200
|
|
response.body.should == 'false'
|
|
end
|
|
end
|
|
|
|
context "git push" do
|
|
it do
|
|
push(key, personal_project)
|
|
|
|
response.status.should == 200
|
|
response.body.should == 'false'
|
|
end
|
|
end
|
|
end
|
|
end
|
|
|
|
def pull(key, project)
|
|
get(
|
|
api("/internal/allowed"),
|
|
ref: 'master',
|
|
key_id: key.id,
|
|
project: project.path_with_namespace,
|
|
action: 'git-upload-pack'
|
|
)
|
|
end
|
|
|
|
def push(key, project)
|
|
get(
|
|
api("/internal/allowed"),
|
|
ref: 'master',
|
|
key_id: key.id,
|
|
project: project.path_with_namespace,
|
|
action: 'git-receive-pack'
|
|
)
|
|
end
|
|
end
|