spec/requests/api/error_tracking/client_keys_spec.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86

# frozen_string_literal: true

require 'spec_helper'

RSpec.describe API::ErrorTracking::ClientKeys do
  let_it_be(:guest) { create(:user) }
  let_it_be(:maintainer) { create(:user) }
  let_it_be(:setting) { create(:project_error_tracking_setting) }
  let_it_be(:project) { setting.project }

  let!(:client_key) { create(:error_tracking_client_key, project: project) }

  before do
    project.add_guest(guest)
    project.add_maintainer(maintainer)
  end

  shared_examples 'endpoint with authorization' do
    context 'when unauthenticated' do
      let(:user) { nil }

      it { expect(response).to have_gitlab_http_status(:unauthorized) }
    end

    context 'when authenticated as non-maintainer' do
      let(:user) { guest }

      it { expect(response).to have_gitlab_http_status(:forbidden) }
    end
  end

  describe "GET /projects/:id/error_tracking/client_keys" do
    before do
      get api("/projects/#{project.id}/error_tracking/client_keys", user)
    end

    it_behaves_like 'endpoint with authorization'

    context 'when authenticated as maintainer' do
      let(:user) { maintainer }

      it 'returns client keys' do
        expect(response).to have_gitlab_http_status(:ok)
        expect(response).to include_pagination_headers
        expect(json_response.size).to eq(1)
        expect(json_response.first['id']).to eq(client_key.id)
      end
    end
  end

  describe "POST /projects/:id/error_tracking/client_keys" do
    before do
      post api("/projects/#{project.id}/error_tracking/client_keys", user)
    end

    it_behaves_like 'endpoint with authorization'

    context 'when authenticated as maintainer' do
      let(:user) { maintainer }

      it 'returns a newly created client key' do
        new_key = project.error_tracking_client_keys.last

        expect(json_response['id']).to eq(new_key.id)
        expect(json_response['public_key']).to eq(new_key.public_key)
        expect(json_response['sentry_dsn']).to eq(new_key.sentry_dsn)
      end
    end
  end

  describe "DELETE /projects/:id/error_tracking/client_keys/:key_id" do
    before do
      delete api("/projects/#{project.id}/error_tracking/client_keys/#{client_key.id}", user)
    end

    it_behaves_like 'endpoint with authorization'

    context 'when authenticated as maintainer' do
      let(:user) { maintainer }

      it 'returns a correct status' do
        expect(response).to have_gitlab_http_status(:ok)
      end
    end
  end
end