Add latest changes from gitlab-org/security/gitlab@13-4-stable-ee

author: GitLab Bot <gitlab-bot@gitlab.com> 2020-09-30 23:32:30 +0000
committer: GitLab Bot <gitlab-bot@gitlab.com> 2020-09-30 23:32:30 +0000
commit: 2f8d8dca22eca9937cee14765ceadc2aee266616 (patch)
tree: 1b5142eaedf21ebe5c6911e30e0e99d2833620e0 /spec/services/members/update_service_spec.rb
parent: 4d243f5ca3709f28f9de96937e3c2ac736deb4bd (diff)
download: gitlab-ce-2f8d8dca22eca9937cee14765ceadc2aee266616.tar.gz
1 files changed, 25 insertions, 7 deletions
diff --git a/spec/services/members/update_service_spec.rb b/spec/services/members/update_service_spec.rb
index f510916558b..2d4457f3f62 100644
--- a/spec/services/members/update_service_spec.rb
+++ b/spec/services/members/update_service_spec.rb
@@ -31,17 +31,35 @@ RSpec.describe Members::UpdateService do
     end
 
     context 'when member is downgraded to guest' do
-      let(:params) do
-        { access_level: Gitlab::Access::GUEST }
+      shared_examples 'schedules to delete confidential todos' do
+        it do
+          expect(TodosDestroyer::EntityLeaveWorker).to receive(:perform_in).with(Todo::WAIT_FOR_DELETE, member.user_id, member.source_id, source.class.name).once
+
+          updated_member = described_class.new(current_user, params).execute(member, permission: permission)
+
+          expect(updated_member).to be_valid
+          expect(updated_member.access_level).to eq(Gitlab::Access::GUEST)
+        end
+      end
+
+      context 'with Gitlab::Access::GUEST level as a string' do
+        let(:params) { { access_level: Gitlab::Access::GUEST.to_s } }
+
+        it_behaves_like 'schedules to delete confidential todos'
       end
 
-      it 'schedules to delete confidential todos' do
-        expect(TodosDestroyer::EntityLeaveWorker).to receive(:perform_in).with(Todo::WAIT_FOR_DELETE, member.user_id, member.source_id, source.class.name).once
+      context 'with Gitlab::Access::GUEST level as an integer' do
+        let(:params) { { access_level: Gitlab::Access::GUEST } }
+
+        it_behaves_like 'schedules to delete confidential todos'
+      end
+    end
 
-        updated_member = described_class.new(current_user, params).execute(member, permission: permission)
+    context 'when access_level is invalid' do
+      let(:params) { { access_level: 'invalid' } }
 
-        expect(updated_member).to be_valid
-        expect(updated_member.access_level).to eq(Gitlab::Access::GUEST)
+      it 'raises an error' do
+        expect { described_class.new(current_user, params) }.to raise_error(ArgumentError, 'invalid value for Integer(): "invalid"')
       end
     end
   end
author	GitLab Bot <gitlab-bot@gitlab.com>	2020-09-30 23:32:30 +0000
committer	GitLab Bot <gitlab-bot@gitlab.com>	2020-09-30 23:32:30 +0000
commit	2f8d8dca22eca9937cee14765ceadc2aee266616 (patch)
tree	1b5142eaedf21ebe5c6911e30e0e99d2833620e0 /spec/services/members/update_service_spec.rb
parent	4d243f5ca3709f28f9de96937e3c2ac736deb4bd (diff)
download	gitlab-ce-2f8d8dca22eca9937cee14765ceadc2aee266616.tar.gz