##// END OF EJS Templates
jro_apps » redmine
RSS
Verify HTTP method on ProjectsController#create....
Jean-Philippe Lang -
r4526:072c4ad14cf0
parent child
Show More
Side by Side Unified
Context file:
r4526:072c4ad14cf0 Loading diff...:
Show file before | Show file after | Hide comments
@@ -1,269 +1,269
1 1 # Redmine - project management software
2 2 # Copyright (C) 2006-2009 Jean-Philippe Lang
3 3 #
4 4 # This program is free software; you can redistribute it and/or
5 5 # modify it under the terms of the GNU General Public License
6 6 # as published by the Free Software Foundation; either version 2
7 7 # of the License, or (at your option) any later version.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU General Public License
15 15 # along with this program; if not, write to the Free Software
16 16 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
17 17
18 18 class ProjectsController < ApplicationController
19 19 menu_item :overview
20 20 menu_item :roadmap, :only => :roadmap
21 21 menu_item :settings, :only => :settings
22 22
23 23 before_filter :find_project, :except => [ :index, :list, :new, :create, :copy ]
24 24 before_filter :authorize, :except => [ :index, :list, :new, :create, :copy, :archive, :unarchive, :destroy]
25 25 before_filter :authorize_global, :only => [:new, :create]
26 26 before_filter :require_admin, :only => [ :copy, :archive, :unarchive, :destroy ]
27 27 accept_key_auth :index, :show, :create, :update, :destroy
28 28
29 29 after_filter :only => [:create, :edit, :update, :archive, :unarchive, :destroy] do |controller|
30 30 if controller.request.post?
31 31 controller.send :expire_action, :controller => 'welcome', :action => 'robots.txt'
32 32 end
33 33 end
34 34
35 # TODO: convert to PUT only
36 verify :method => [:post, :put], :only => :update, :render => {:nothing => true, :status => :method_not_allowed }
37
38 35 helper :sort
39 36 include SortHelper
40 37 helper :custom_fields
41 38 include CustomFieldsHelper
42 39 helper :issues
43 40 helper :queries
44 41 include QueriesHelper
45 42 helper :repositories
46 43 include RepositoriesHelper
47 44 include ProjectsHelper
48 45
49 46 # Lists visible projects
50 47 def index
51 48 respond_to do |format|
52 49 format.html {
53 50 @projects = Project.visible.find(:all, :order => 'lft')
54 51 }
55 52 format.api {
56 53 @offset, @limit = api_offset_and_limit
57 54 @project_count = Project.visible.count
58 55 @projects = Project.visible.all(:offset => @offset, :limit => @limit, :order => 'lft')
59 56 }
60 57 format.atom {
61 58 projects = Project.visible.find(:all, :order => 'created_on DESC',
62 59 :limit => Setting.feeds_limit.to_i)
63 60 render_feed(projects, :title => "#{Setting.app_title}: #{l(:label_project_latest)}")
64 61 }
65 62 end
66 63 end
67 64
68 65 def new
69 66 @issue_custom_fields = IssueCustomField.find(:all, :order => "#{CustomField.table_name}.position")
70 67 @trackers = Tracker.all
71 68 @project = Project.new(params[:project])
72 69 end
73 70
71 verify :method => :post, :only => :create, :render => {:nothing => true, :status => :method_not_allowed }
74 72 def create
75 73 @issue_custom_fields = IssueCustomField.find(:all, :order => "#{CustomField.table_name}.position")
76 74 @trackers = Tracker.all
77 75 @project = Project.new
78 76 @project.safe_attributes = params[:project]
79 77
80 78 if validate_parent_id && @project.save
81 79 @project.set_allowed_parent!(params[:project]['parent_id']) if params[:project].has_key?('parent_id')
82 80 # Add current user as a project member if he is not admin
83 81 unless User.current.admin?
84 82 r = Role.givable.find_by_id(Setting.new_project_user_role_id.to_i) || Role.givable.first
85 83 m = Member.new(:user => User.current, :roles => [r])
86 84 @project.members << m
87 85 end
88 86 respond_to do |format|
89 87 format.html {
90 88 flash[:notice] = l(:notice_successful_create)
91 89 redirect_to :controller => 'projects', :action => 'settings', :id => @project
92 90 }
93 91 format.api { render :action => 'show', :status => :created, :location => url_for(:controller => 'projects', :action => 'show', :id => @project.id) }
94 92 end
95 93 else
96 94 respond_to do |format|
97 95 format.html { render :action => 'new' }
98 96 format.api { render_validation_errors(@project) }
99 97 end
100 98 end
101 99
102 100 end
103 101
104 102 def copy
105 103 @issue_custom_fields = IssueCustomField.find(:all, :order => "#{CustomField.table_name}.position")
106 104 @trackers = Tracker.all
107 105 @root_projects = Project.find(:all,
108 106 :conditions => "parent_id IS NULL AND status = #{Project::STATUS_ACTIVE}",
109 107 :order => 'name')
110 108 @source_project = Project.find(params[:id])
111 109 if request.get?
112 110 @project = Project.copy_from(@source_project)
113 111 if @project
114 112 @project.identifier = Project.next_identifier if Setting.sequential_project_identifiers?
115 113 else
116 114 redirect_to :controller => 'admin', :action => 'projects'
117 115 end
118 116 else
119 117 Mailer.with_deliveries(params[:notifications] == '1') do
120 118 @project = Project.new
121 119 @project.safe_attributes = params[:project]
122 120 @project.enabled_module_names = params[:enabled_modules]
123 121 if validate_parent_id && @project.copy(@source_project, :only => params[:only])
124 122 @project.set_allowed_parent!(params[:project]['parent_id']) if params[:project].has_key?('parent_id')
125 123 flash[:notice] = l(:notice_successful_create)
126 124 redirect_to :controller => 'projects', :action => 'settings', :id => @project
127 125 elsif !@project.new_record?
128 126 # Project was created
129 127 # But some objects were not copied due to validation failures
130 128 # (eg. issues from disabled trackers)
131 129 # TODO: inform about that
132 130 redirect_to :controller => 'projects', :action => 'settings', :id => @project
133 131 end
134 132 end
135 133 end
136 134 rescue ActiveRecord::RecordNotFound
137 135 redirect_to :controller => 'admin', :action => 'projects'
138 136 end
139 137
140 138 # Show @project
141 139 def show
142 140 if params[:jump]
143 141 # try to redirect to the requested menu item
144 142 redirect_to_project_menu_item(@project, params[:jump]) && return
145 143 end
146 144
147 145 @users_by_role = @project.users_by_role
148 146 @subprojects = @project.children.visible
149 147 @news = @project.news.find(:all, :limit => 5, :include => [ :author, :project ], :order => "#{News.table_name}.created_on DESC")
150 148 @trackers = @project.rolled_up_trackers
151 149
152 150 cond = @project.project_condition(Setting.display_subprojects_issues?)
153 151
154 152 @open_issues_by_tracker = Issue.visible.count(:group => :tracker,
155 153 :include => [:project, :status, :tracker],
156 154 :conditions => ["(#{cond}) AND #{IssueStatus.table_name}.is_closed=?", false])
157 155 @total_issues_by_tracker = Issue.visible.count(:group => :tracker,
158 156 :include => [:project, :status, :tracker],
159 157 :conditions => cond)
160 158
161 159 TimeEntry.visible_by(User.current) do
162 160 @total_hours = TimeEntry.sum(:hours,
163 161 :include => :project,
164 162 :conditions => cond).to_f
165 163 end
166 164 @key = User.current.rss_key
167 165
168 166 respond_to do |format|
169 167 format.html
170 168 format.api
171 169 end
172 170 end
173 171
174 172 def settings
175 173 @issue_custom_fields = IssueCustomField.find(:all, :order => "#{CustomField.table_name}.position")
176 174 @issue_category ||= IssueCategory.new
177 175 @member ||= @project.members.new
178 176 @trackers = Tracker.all
179 177 @repository ||= @project.repository
180 178 @wiki ||= @project.wiki
181 179 end
182 180
183 181 def edit
184 182 end
185 183
184 # TODO: convert to PUT only
185 verify :method => [:post, :put], :only => :update, :render => {:nothing => true, :status => :method_not_allowed }
186 186 def update
187 187 @project.safe_attributes = params[:project]
188 188 if validate_parent_id && @project.save
189 189 @project.set_allowed_parent!(params[:project]['parent_id']) if params[:project].has_key?('parent_id')
190 190 respond_to do |format|
191 191 format.html {
192 192 flash[:notice] = l(:notice_successful_update)
193 193 redirect_to :action => 'settings', :id => @project
194 194 }
195 195 format.api { head :ok }
196 196 end
197 197 else
198 198 respond_to do |format|
199 199 format.html {
200 200 settings
201 201 render :action => 'settings'
202 202 }
203 203 format.api { render_validation_errors(@project) }
204 204 end
205 205 end
206 206 end
207 207
208 208 def modules
209 209 @project.enabled_module_names = params[:enabled_modules]
210 210 flash[:notice] = l(:notice_successful_update)
211 211 redirect_to :action => 'settings', :id => @project, :tab => 'modules'
212 212 end
213 213
214 214 def archive
215 215 if request.post?
216 216 unless @project.archive
217 217 flash[:error] = l(:error_can_not_archive_project)
218 218 end
219 219 end
220 220 redirect_to(url_for(:controller => 'admin', :action => 'projects', :status => params[:status]))
221 221 end
222 222
223 223 def unarchive
224 224 @project.unarchive if request.post? && !@project.active?
225 225 redirect_to(url_for(:controller => 'admin', :action => 'projects', :status => params[:status]))
226 226 end
227 227
228 228 # Delete @project
229 229 def destroy
230 230 @project_to_destroy = @project
231 231 if request.get?
232 232 # display confirmation view
233 233 else
234 234 if api_request? || params[:confirm]
235 235 @project_to_destroy.destroy
236 236 respond_to do |format|
237 237 format.html { redirect_to :controller => 'admin', :action => 'projects' }
238 238 format.api { head :ok }
239 239 end
240 240 end
241 241 end
242 242 # hide project in layout
243 243 @project = nil
244 244 end
245 245
246 246 private
247 247 def find_optional_project
248 248 return true unless params[:id]
249 249 @project = Project.find(params[:id])
250 250 authorize
251 251 rescue ActiveRecord::RecordNotFound
252 252 render_404
253 253 end
254 254
255 255 # Validates parent_id param according to user's permissions
256 256 # TODO: move it to Project model in a validation that depends on User.current
257 257 def validate_parent_id
258 258 return true if User.current.admin?
259 259 parent_id = params[:project] && params[:project][:parent_id]
260 260 if parent_id || @project.new_record?
261 261 parent = parent_id.blank? ? nil : Project.find_by_id(parent_id.to_i)
262 262 unless @project.allowed_parents.include?(parent)
263 263 @project.errors.add :parent_id, :invalid
264 264 return false
265 265 end
266 266 end
267 267 true
268 268 end
269 269 end
Show file before | Show file after | Hide comments
@@ -1,477 +1,488
1 1 # Redmine - project management software
2 2 # Copyright (C) 2006-2008 Jean-Philippe Lang
3 3 #
4 4 # This program is free software; you can redistribute it and/or
5 5 # modify it under the terms of the GNU General Public License
6 6 # as published by the Free Software Foundation; either version 2
7 7 # of the License, or (at your option) any later version.
8 8 #
9 9 # This program is distributed in the hope that it will be useful,
10 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 12 # GNU General Public License for more details.
13 13 #
14 14 # You should have received a copy of the GNU General Public License
15 15 # along with this program; if not, write to the Free Software
16 16 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
17 17
18 18 require File.expand_path('../../test_helper', __FILE__)
19 19 require 'projects_controller'
20 20
21 21 # Re-raise errors caught by the controller.
22 22 class ProjectsController; def rescue_action(e) raise e end; end
23 23
24 24 class ProjectsControllerTest < ActionController::TestCase
25 25 fixtures :projects, :versions, :users, :roles, :members, :member_roles, :issues, :journals, :journal_details,
26 26 :trackers, :projects_trackers, :issue_statuses, :enabled_modules, :enumerations, :boards, :messages,
27 27 :attachments, :custom_fields, :custom_values, :time_entries
28 28
29 29 def setup
30 30 @controller = ProjectsController.new
31 31 @request = ActionController::TestRequest.new
32 32 @response = ActionController::TestResponse.new
33 33 @request.session[:user_id] = nil
34 34 Setting.default_language = 'en'
35 35 end
36 36
37 37 def test_index
38 38 get :index
39 39 assert_response :success
40 40 assert_template 'index'
41 41 assert_not_nil assigns(:projects)
42 42
43 43 assert_tag :ul, :child => {:tag => 'li',
44 44 :descendant => {:tag => 'a', :content => 'eCookbook'},
45 45 :child => { :tag => 'ul',
46 46 :descendant => { :tag => 'a',
47 47 :content => 'Child of private child'
48 48 }
49 49 }
50 50 }
51 51
52 52 assert_no_tag :a, :content => /Private child of eCookbook/
53 53 end
54 54
55 55 def test_index_atom
56 56 get :index, :format => 'atom'
57 57 assert_response :success
58 58 assert_template 'common/feed.atom.rxml'
59 59 assert_select 'feed>title', :text => 'Redmine: Latest projects'
60 60 assert_select 'feed>entry', :count => Project.count(:conditions => Project.visible_by(User.current))
61 61 end
62 62
63 63 context "#index" do
64 64 context "by non-admin user with view_time_entries permission" do
65 65 setup do
66 66 @request.session[:user_id] = 3
67 67 end
68 68 should "show overall spent time link" do
69 69 get :index
70 70 assert_template 'index'
71 71 assert_tag :a, :attributes => {:href => '/time_entries'}
72 72 end
73 73 end
74 74
75 75 context "by non-admin user without view_time_entries permission" do
76 76 setup do
77 77 Role.find(2).remove_permission! :view_time_entries
78 78 Role.non_member.remove_permission! :view_time_entries
79 79 Role.anonymous.remove_permission! :view_time_entries
80 80 @request.session[:user_id] = 3
81 81 end
82 82 should "not show overall spent time link" do
83 83 get :index
84 84 assert_template 'index'
85 85 assert_no_tag :a, :attributes => {:href => '/time_entries'}
86 86 end
87 87 end
88 88 end
89 89
90 90 context "#new" do
91 91 context "by admin user" do
92 92 setup do
93 93 @request.session[:user_id] = 1
94 94 end
95 95
96 96 should "accept get" do
97 97 get :new
98 98 assert_response :success
99 99 assert_template 'new'
100 100 end
101 101
102 102 end
103 103
104 104 context "by non-admin user with add_project permission" do
105 105 setup do
106 106 Role.non_member.add_permission! :add_project
107 107 @request.session[:user_id] = 9
108 108 end
109 109
110 110 should "accept get" do
111 111 get :new
112 112 assert_response :success
113 113 assert_template 'new'
114 114 assert_no_tag :select, :attributes => {:name => 'project[parent_id]'}
115 115 end
116 116 end
117 117
118 118 context "by non-admin user with add_subprojects permission" do
119 119 setup do
120 120 Role.find(1).remove_permission! :add_project
121 121 Role.find(1).add_permission! :add_subprojects
122 122 @request.session[:user_id] = 2
123 123 end
124 124
125 125 should "accept get" do
126 126 get :new, :parent_id => 'ecookbook'
127 127 assert_response :success
128 128 assert_template 'new'
129 129 # parent project selected
130 130 assert_tag :select, :attributes => {:name => 'project[parent_id]'},
131 131 :child => {:tag => 'option', :attributes => {:value => '1', :selected => 'selected'}}
132 132 # no empty value
133 133 assert_no_tag :select, :attributes => {:name => 'project[parent_id]'},
134 134 :child => {:tag => 'option', :attributes => {:value => ''}}
135 135 end
136 136 end
137 137
138 138 end
139 139
140 140 context "POST :create" do
141 141 context "by admin user" do
142 142 setup do
143 143 @request.session[:user_id] = 1
144 144 end
145 145
146 146 should "create a new project" do
147 147 post :create,
148 148 :project => {
149 149 :name => "blog",
150 150 :description => "weblog",
151 151 :homepage => 'http://weblog',
152 152 :identifier => "blog",
153 153 :is_public => 1,
154 154 :custom_field_values => { '3' => 'Beta' },
155 155 :tracker_ids => ['1', '3'],
156 156 # an issue custom field that is not for all project
157 157 :issue_custom_field_ids => ['9'],
158 158 :enabled_module_names => ['issue_tracking', 'news', 'repository']
159 159 }
160 160 assert_redirected_to '/projects/blog/settings'
161 161
162 162 project = Project.find_by_name('blog')
163 163 assert_kind_of Project, project
164 164 assert project.active?
165 165 assert_equal 'weblog', project.description
166 166 assert_equal 'http://weblog', project.homepage
167 167 assert_equal true, project.is_public?
168 168 assert_nil project.parent
169 169 assert_equal 'Beta', project.custom_value_for(3).value
170 170 assert_equal [1, 3], project.trackers.map(&:id).sort
171 171 assert_equal ['issue_tracking', 'news', 'repository'], project.enabled_module_names.sort
172 172 assert project.issue_custom_fields.include?(IssueCustomField.find(9))
173 173 end
174 174
175 175 should "create a new subproject" do
176 176 post :create, :project => { :name => "blog",
177 177 :description => "weblog",
178 178 :identifier => "blog",
179 179 :is_public => 1,
180 180 :custom_field_values => { '3' => 'Beta' },
181 181 :parent_id => 1
182 182 }
183 183 assert_redirected_to '/projects/blog/settings'
184 184
185 185 project = Project.find_by_name('blog')
186 186 assert_kind_of Project, project
187 187 assert_equal Project.find(1), project.parent
188 188 end
189 189 end
190 190
191 191 context "by non-admin user with add_project permission" do
192 192 setup do
193 193 Role.non_member.add_permission! :add_project
194 194 @request.session[:user_id] = 9
195 195 end
196 196
197 197 should "accept create a Project" do
198 198 post :create, :project => { :name => "blog",
199 199 :description => "weblog",
200 200 :identifier => "blog",
201 201 :is_public => 1,
202 202 :custom_field_values => { '3' => 'Beta' },
203 203 :tracker_ids => ['1', '3'],
204 204 :enabled_module_names => ['issue_tracking', 'news', 'repository']
205 205 }
206 206
207 207 assert_redirected_to '/projects/blog/settings'
208 208
209 209 project = Project.find_by_name('blog')
210 210 assert_kind_of Project, project
211 211 assert_equal 'weblog', project.description
212 212 assert_equal true, project.is_public?
213 213 assert_equal [1, 3], project.trackers.map(&:id).sort
214 214 assert_equal ['issue_tracking', 'news', 'repository'], project.enabled_module_names.sort
215 215
216 216 # User should be added as a project member
217 217 assert User.find(9).member_of?(project)
218 218 assert_equal 1, project.members.size
219 219 end
220 220
221 221 should "fail with parent_id" do
222 222 assert_no_difference 'Project.count' do
223 223 post :create, :project => { :name => "blog",
224 224 :description => "weblog",
225 225 :identifier => "blog",
226 226 :is_public => 1,
227 227 :custom_field_values => { '3' => 'Beta' },
228 228 :parent_id => 1
229 229 }
230 230 end
231 231 assert_response :success
232 232 project = assigns(:project)
233 233 assert_kind_of Project, project
234 234 assert_not_nil project.errors.on(:parent_id)
235 235 end
236 236 end
237 237
238 238 context "by non-admin user with add_subprojects permission" do
239 239 setup do
240 240 Role.find(1).remove_permission! :add_project
241 241 Role.find(1).add_permission! :add_subprojects
242 242 @request.session[:user_id] = 2
243 243 end
244 244
245 245 should "create a project with a parent_id" do
246 246 post :create, :project => { :name => "blog",
247 247 :description => "weblog",
248 248 :identifier => "blog",
249 249 :is_public => 1,
250 250 :custom_field_values => { '3' => 'Beta' },
251 251 :parent_id => 1
252 252 }
253 253 assert_redirected_to '/projects/blog/settings'
254 254 project = Project.find_by_name('blog')
255 255 end
256 256
257 257 should "fail without parent_id" do
258 258 assert_no_difference 'Project.count' do
259 259 post :create, :project => { :name => "blog",
260 260 :description => "weblog",
261 261 :identifier => "blog",
262 262 :is_public => 1,
263 263 :custom_field_values => { '3' => 'Beta' }
264 264 }
265 265 end
266 266 assert_response :success
267 267 project = assigns(:project)
268 268 assert_kind_of Project, project
269 269 assert_not_nil project.errors.on(:parent_id)
270 270 end
271 271
272 272 should "fail with unauthorized parent_id" do
273 273 assert !User.find(2).member_of?(Project.find(6))
274 274 assert_no_difference 'Project.count' do
275 275 post :create, :project => { :name => "blog",
276 276 :description => "weblog",
277 277 :identifier => "blog",
278 278 :is_public => 1,
279 279 :custom_field_values => { '3' => 'Beta' },
280 280 :parent_id => 6
281 281 }
282 282 end
283 283 assert_response :success
284 284 project = assigns(:project)
285 285 assert_kind_of Project, project
286 286 assert_not_nil project.errors.on(:parent_id)
287 287 end
288 288 end
289 289 end
290 290
291 context "GET :create" do
292 setup do
293 @request.session[:user_id] = 1
294 end
295
296 should "not be allowed" do
297 get :create
298 assert_response :method_not_allowed
299 end
300 end
301
291 302 def test_show_by_id
292 303 get :show, :id => 1
293 304 assert_response :success
294 305 assert_template 'show'
295 306 assert_not_nil assigns(:project)
296 307 end
297 308
298 309 def test_show_by_identifier
299 310 get :show, :id => 'ecookbook'
300 311 assert_response :success
301 312 assert_template 'show'
302 313 assert_not_nil assigns(:project)
303 314 assert_equal Project.find_by_identifier('ecookbook'), assigns(:project)
304 315
305 316 assert_tag 'li', :content => /Development status/
306 317 end
307 318
308 319 def test_show_should_not_display_hidden_custom_fields
309 320 ProjectCustomField.find_by_name('Development status').update_attribute :visible, false
310 321 get :show, :id => 'ecookbook'
311 322 assert_response :success
312 323 assert_template 'show'
313 324 assert_not_nil assigns(:project)
314 325
315 326 assert_no_tag 'li', :content => /Development status/
316 327 end
317 328
318 329 def test_show_should_not_fail_when_custom_values_are_nil
319 330 project = Project.find_by_identifier('ecookbook')
320 331 project.custom_values.first.update_attribute(:value, nil)
321 332 get :show, :id => 'ecookbook'
322 333 assert_response :success
323 334 assert_template 'show'
324 335 assert_not_nil assigns(:project)
325 336 assert_equal Project.find_by_identifier('ecookbook'), assigns(:project)
326 337 end
327 338
328 339 def show_archived_project_should_be_denied
329 340 project = Project.find_by_identifier('ecookbook')
330 341 project.archive!
331 342
332 343 get :show, :id => 'ecookbook'
333 344 assert_response 403
334 345 assert_nil assigns(:project)
335 346 assert_tag :tag => 'p', :content => /archived/
336 347 end
337 348
338 349 def test_private_subprojects_hidden
339 350 get :show, :id => 'ecookbook'
340 351 assert_response :success
341 352 assert_template 'show'
342 353 assert_no_tag :tag => 'a', :content => /Private child/
343 354 end
344 355
345 356 def test_private_subprojects_visible
346 357 @request.session[:user_id] = 2 # manager who is a member of the private subproject
347 358 get :show, :id => 'ecookbook'
348 359 assert_response :success
349 360 assert_template 'show'
350 361 assert_tag :tag => 'a', :content => /Private child/
351 362 end
352 363
353 364 def test_settings
354 365 @request.session[:user_id] = 2 # manager
355 366 get :settings, :id => 1
356 367 assert_response :success
357 368 assert_template 'settings'
358 369 end
359 370
360 371 def test_update
361 372 @request.session[:user_id] = 2 # manager
362 373 post :update, :id => 1, :project => {:name => 'Test changed name',
363 374 :issue_custom_field_ids => ['']}
364 375 assert_redirected_to '/projects/ecookbook/settings'
365 376 project = Project.find(1)
366 377 assert_equal 'Test changed name', project.name
367 378 end
368 379
369 380 def test_get_destroy
370 381 @request.session[:user_id] = 1 # admin
371 382 get :destroy, :id => 1
372 383 assert_response :success
373 384 assert_template 'destroy'
374 385 assert_not_nil Project.find_by_id(1)
375 386 end
376 387
377 388 def test_post_destroy
378 389 @request.session[:user_id] = 1 # admin
379 390 post :destroy, :id => 1, :confirm => 1
380 391 assert_redirected_to '/admin/projects'
381 392 assert_nil Project.find_by_id(1)
382 393 end
383 394
384 395 def test_archive
385 396 @request.session[:user_id] = 1 # admin
386 397 post :archive, :id => 1
387 398 assert_redirected_to '/admin/projects'
388 399 assert !Project.find(1).active?
389 400 end
390 401
391 402 def test_unarchive
392 403 @request.session[:user_id] = 1 # admin
393 404 Project.find(1).archive
394 405 post :unarchive, :id => 1
395 406 assert_redirected_to '/admin/projects'
396 407 assert Project.find(1).active?
397 408 end
398 409
399 410 def test_project_breadcrumbs_should_be_limited_to_3_ancestors
400 411 CustomField.delete_all
401 412 parent = nil
402 413 6.times do |i|
403 414 p = Project.create!(:name => "Breadcrumbs #{i}", :identifier => "breadcrumbs-#{i}")
404 415 p.set_parent!(parent)
405 416 get :show, :id => p
406 417 assert_tag :h1, :parent => { :attributes => {:id => 'header'}},
407 418 :children => { :count => [i, 3].min,
408 419 :only => { :tag => 'a' } }
409 420
410 421 parent = p
411 422 end
412 423 end
413 424
414 425 def test_copy_with_project
415 426 @request.session[:user_id] = 1 # admin
416 427 get :copy, :id => 1
417 428 assert_response :success
418 429 assert_template 'copy'
419 430 assert assigns(:project)
420 431 assert_equal Project.find(1).description, assigns(:project).description
421 432 assert_nil assigns(:project).id
422 433 end
423 434
424 435 def test_copy_without_project
425 436 @request.session[:user_id] = 1 # admin
426 437 get :copy
427 438 assert_response :redirect
428 439 assert_redirected_to :controller => 'admin', :action => 'projects'
429 440 end
430 441
431 442 context "POST :copy" do
432 443 should "TODO: test the rest of the method"
433 444
434 445 should "redirect to the project settings when successful" do
435 446 @request.session[:user_id] = 1 # admin
436 447 post :copy, :id => 1, :project => {:name => 'Copy', :identifier => 'unique-copy'}
437 448 assert_response :redirect
438 449 assert_redirected_to :controller => 'projects', :action => 'settings', :id => 'unique-copy'
439 450 end
440 451 end
441 452
442 453 def test_jump_should_redirect_to_active_tab
443 454 get :show, :id => 1, :jump => 'issues'
444 455 assert_redirected_to '/projects/ecookbook/issues'
445 456 end
446 457
447 458 def test_jump_should_not_redirect_to_inactive_tab
448 459 get :show, :id => 3, :jump => 'documents'
449 460 assert_response :success
450 461 assert_template 'show'
451 462 end
452 463
453 464 def test_jump_should_not_redirect_to_unknown_tab
454 465 get :show, :id => 3, :jump => 'foobar'
455 466 assert_response :success
456 467 assert_template 'show'
457 468 end
458 469
459 470 # A hook that is manually registered later
460 471 class ProjectBasedTemplate < Redmine::Hook::ViewListener
461 472 def view_layouts_base_html_head(context)
462 473 # Adds a project stylesheet
463 474 stylesheet_link_tag(context[:project].identifier) if context[:project]
464 475 end
465 476 end
466 477 # Don't use this hook now
467 478 Redmine::Hook.clear_listeners
468 479
469 480 def test_hook_response
470 481 Redmine::Hook.add_listener(ProjectBasedTemplate)
471 482 get :show, :id => 1
472 483 assert_tag :tag => 'link', :attributes => {:href => '/stylesheets/ecookbook.css'},
473 484 :parent => {:tag => 'head'}
474 485
475 486 Redmine::Hook.clear_listeners
476 487 end
477 488 end
General Comments 0
You need to be logged in to leave comments. Login now