##// END OF EJS Templates
jro_apps » redmine
RSS
Fixed that destroying a user from the edit page returns a 404 response (#11691)....
Jean-Philippe Lang -
r10057:c68ee7f5458d
parent child
Show More
Side by Side Unified
Context file:
r10057:c68ee7f5458d Loading diff...:
Show file before | Show file after | Hide comments
@@ -1,214 +1,214
1 # Redmine - project management software
1 # Redmine - project management software
2 # Copyright (C) 2006-2012 Jean-Philippe Lang
2 # Copyright (C) 2006-2012 Jean-Philippe Lang
3 #
3 #
4 # This program is free software; you can redistribute it and/or
4 # This program is free software; you can redistribute it and/or
5 # modify it under the terms of the GNU General Public License
5 # modify it under the terms of the GNU General Public License
6 # as published by the Free Software Foundation; either version 2
6 # as published by the Free Software Foundation; either version 2
7 # of the License, or (at your option) any later version.
7 # of the License, or (at your option) any later version.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU General Public License
14 # You should have received a copy of the GNU General Public License
15 # along with this program; if not, write to the Free Software
15 # along with this program; if not, write to the Free Software
16 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
16 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
17
17
18 class UsersController < ApplicationController
18 class UsersController < ApplicationController
19 layout 'admin'
19 layout 'admin'
20
20
21 before_filter :require_admin, :except => :show
21 before_filter :require_admin, :except => :show
22 before_filter :find_user, :only => [:show, :edit, :update, :destroy, :edit_membership, :destroy_membership]
22 before_filter :find_user, :only => [:show, :edit, :update, :destroy, :edit_membership, :destroy_membership]
23 accept_api_auth :index, :show, :create, :update, :destroy
23 accept_api_auth :index, :show, :create, :update, :destroy
24
24
25 helper :sort
25 helper :sort
26 include SortHelper
26 include SortHelper
27 helper :custom_fields
27 helper :custom_fields
28 include CustomFieldsHelper
28 include CustomFieldsHelper
29
29
30 def index
30 def index
31 sort_init 'login', 'asc'
31 sort_init 'login', 'asc'
32 sort_update %w(login firstname lastname mail admin created_on last_login_on)
32 sort_update %w(login firstname lastname mail admin created_on last_login_on)
33
33
34 case params[:format]
34 case params[:format]
35 when 'xml', 'json'
35 when 'xml', 'json'
36 @offset, @limit = api_offset_and_limit
36 @offset, @limit = api_offset_and_limit
37 else
37 else
38 @limit = per_page_option
38 @limit = per_page_option
39 end
39 end
40
40
41 @status = params[:status] || 1
41 @status = params[:status] || 1
42
42
43 scope = User.logged.status(@status)
43 scope = User.logged.status(@status)
44 scope = scope.like(params[:name]) if params[:name].present?
44 scope = scope.like(params[:name]) if params[:name].present?
45 scope = scope.in_group(params[:group_id]) if params[:group_id].present?
45 scope = scope.in_group(params[:group_id]) if params[:group_id].present?
46
46
47 @user_count = scope.count
47 @user_count = scope.count
48 @user_pages = Paginator.new self, @user_count, @limit, params['page']
48 @user_pages = Paginator.new self, @user_count, @limit, params['page']
49 @offset ||= @user_pages.current.offset
49 @offset ||= @user_pages.current.offset
50 @users = scope.find :all,
50 @users = scope.find :all,
51 :order => sort_clause,
51 :order => sort_clause,
52 :limit => @limit,
52 :limit => @limit,
53 :offset => @offset
53 :offset => @offset
54
54
55 respond_to do |format|
55 respond_to do |format|
56 format.html {
56 format.html {
57 @groups = Group.all.sort
57 @groups = Group.all.sort
58 render :layout => !request.xhr?
58 render :layout => !request.xhr?
59 }
59 }
60 format.api
60 format.api
61 end
61 end
62 end
62 end
63
63
64 def show
64 def show
65 # show projects based on current user visibility
65 # show projects based on current user visibility
66 @memberships = @user.memberships.all(:conditions => Project.visible_condition(User.current))
66 @memberships = @user.memberships.all(:conditions => Project.visible_condition(User.current))
67
67
68 events = Redmine::Activity::Fetcher.new(User.current, :author => @user).events(nil, nil, :limit => 10)
68 events = Redmine::Activity::Fetcher.new(User.current, :author => @user).events(nil, nil, :limit => 10)
69 @events_by_day = events.group_by(&:event_date)
69 @events_by_day = events.group_by(&:event_date)
70
70
71 unless User.current.admin?
71 unless User.current.admin?
72 if !@user.active? || (@user != User.current && @memberships.empty? && events.empty?)
72 if !@user.active? || (@user != User.current && @memberships.empty? && events.empty?)
73 render_404
73 render_404
74 return
74 return
75 end
75 end
76 end
76 end
77
77
78 respond_to do |format|
78 respond_to do |format|
79 format.html { render :layout => 'base' }
79 format.html { render :layout => 'base' }
80 format.api
80 format.api
81 end
81 end
82 end
82 end
83
83
84 def new
84 def new
85 @user = User.new(:language => Setting.default_language, :mail_notification => Setting.default_notification_option)
85 @user = User.new(:language => Setting.default_language, :mail_notification => Setting.default_notification_option)
86 @auth_sources = AuthSource.find(:all)
86 @auth_sources = AuthSource.find(:all)
87 end
87 end
88
88
89 def create
89 def create
90 @user = User.new(:language => Setting.default_language, :mail_notification => Setting.default_notification_option)
90 @user = User.new(:language => Setting.default_language, :mail_notification => Setting.default_notification_option)
91 @user.safe_attributes = params[:user]
91 @user.safe_attributes = params[:user]
92 @user.admin = params[:user][:admin] || false
92 @user.admin = params[:user][:admin] || false
93 @user.login = params[:user][:login]
93 @user.login = params[:user][:login]
94 @user.password, @user.password_confirmation = params[:user][:password], params[:user][:password_confirmation] unless @user.auth_source_id
94 @user.password, @user.password_confirmation = params[:user][:password], params[:user][:password_confirmation] unless @user.auth_source_id
95
95
96 if @user.save
96 if @user.save
97 @user.pref.attributes = params[:pref]
97 @user.pref.attributes = params[:pref]
98 @user.pref[:no_self_notified] = (params[:no_self_notified] == '1')
98 @user.pref[:no_self_notified] = (params[:no_self_notified] == '1')
99 @user.pref.save
99 @user.pref.save
100 @user.notified_project_ids = (@user.mail_notification == 'selected' ? params[:notified_project_ids] : [])
100 @user.notified_project_ids = (@user.mail_notification == 'selected' ? params[:notified_project_ids] : [])
101
101
102 Mailer.account_information(@user, params[:user][:password]).deliver if params[:send_information]
102 Mailer.account_information(@user, params[:user][:password]).deliver if params[:send_information]
103
103
104 respond_to do |format|
104 respond_to do |format|
105 format.html {
105 format.html {
106 flash[:notice] = l(:notice_user_successful_create, :id => view_context.link_to(@user.login, user_path(@user)))
106 flash[:notice] = l(:notice_user_successful_create, :id => view_context.link_to(@user.login, user_path(@user)))
107 redirect_to(params[:continue] ?
107 redirect_to(params[:continue] ?
108 {:controller => 'users', :action => 'new'} :
108 {:controller => 'users', :action => 'new'} :
109 {:controller => 'users', :action => 'edit', :id => @user}
109 {:controller => 'users', :action => 'edit', :id => @user}
110 )
110 )
111 }
111 }
112 format.api { render :action => 'show', :status => :created, :location => user_url(@user) }
112 format.api { render :action => 'show', :status => :created, :location => user_url(@user) }
113 end
113 end
114 else
114 else
115 @auth_sources = AuthSource.find(:all)
115 @auth_sources = AuthSource.find(:all)
116 # Clear password input
116 # Clear password input
117 @user.password = @user.password_confirmation = nil
117 @user.password = @user.password_confirmation = nil
118
118
119 respond_to do |format|
119 respond_to do |format|
120 format.html { render :action => 'new' }
120 format.html { render :action => 'new' }
121 format.api { render_validation_errors(@user) }
121 format.api { render_validation_errors(@user) }
122 end
122 end
123 end
123 end
124 end
124 end
125
125
126 def edit
126 def edit
127 @auth_sources = AuthSource.find(:all)
127 @auth_sources = AuthSource.find(:all)
128 @membership ||= Member.new
128 @membership ||= Member.new
129 end
129 end
130
130
131 def update
131 def update
132 @user.admin = params[:user][:admin] if params[:user][:admin]
132 @user.admin = params[:user][:admin] if params[:user][:admin]
133 @user.login = params[:user][:login] if params[:user][:login]
133 @user.login = params[:user][:login] if params[:user][:login]
134 if params[:user][:password].present? && (@user.auth_source_id.nil? || params[:user][:auth_source_id].blank?)
134 if params[:user][:password].present? && (@user.auth_source_id.nil? || params[:user][:auth_source_id].blank?)
135 @user.password, @user.password_confirmation = params[:user][:password], params[:user][:password_confirmation]
135 @user.password, @user.password_confirmation = params[:user][:password], params[:user][:password_confirmation]
136 end
136 end
137 @user.safe_attributes = params[:user]
137 @user.safe_attributes = params[:user]
138 # Was the account actived ? (do it before User#save clears the change)
138 # Was the account actived ? (do it before User#save clears the change)
139 was_activated = (@user.status_change == [User::STATUS_REGISTERED, User::STATUS_ACTIVE])
139 was_activated = (@user.status_change == [User::STATUS_REGISTERED, User::STATUS_ACTIVE])
140 # TODO: Similar to My#account
140 # TODO: Similar to My#account
141 @user.pref.attributes = params[:pref]
141 @user.pref.attributes = params[:pref]
142 @user.pref[:no_self_notified] = (params[:no_self_notified] == '1')
142 @user.pref[:no_self_notified] = (params[:no_self_notified] == '1')
143
143
144 if @user.save
144 if @user.save
145 @user.pref.save
145 @user.pref.save
146 @user.notified_project_ids = (@user.mail_notification == 'selected' ? params[:notified_project_ids] : [])
146 @user.notified_project_ids = (@user.mail_notification == 'selected' ? params[:notified_project_ids] : [])
147
147
148 if was_activated
148 if was_activated
149 Mailer.account_activated(@user).deliver
149 Mailer.account_activated(@user).deliver
150 elsif @user.active? && params[:send_information] && !params[:user][:password].blank? && @user.auth_source_id.nil?
150 elsif @user.active? && params[:send_information] && !params[:user][:password].blank? && @user.auth_source_id.nil?
151 Mailer.account_information(@user, params[:user][:password]).deliver
151 Mailer.account_information(@user, params[:user][:password]).deliver
152 end
152 end
153
153
154 respond_to do |format|
154 respond_to do |format|
155 format.html {
155 format.html {
156 flash[:notice] = l(:notice_successful_update)
156 flash[:notice] = l(:notice_successful_update)
157 redirect_to_referer_or edit_user_path(@user)
157 redirect_to_referer_or edit_user_path(@user)
158 }
158 }
159 format.api { render_api_ok }
159 format.api { render_api_ok }
160 end
160 end
161 else
161 else
162 @auth_sources = AuthSource.find(:all)
162 @auth_sources = AuthSource.find(:all)
163 @membership ||= Member.new
163 @membership ||= Member.new
164 # Clear password input
164 # Clear password input
165 @user.password = @user.password_confirmation = nil
165 @user.password = @user.password_confirmation = nil
166
166
167 respond_to do |format|
167 respond_to do |format|
168 format.html { render :action => :edit }
168 format.html { render :action => :edit }
169 format.api { render_validation_errors(@user) }
169 format.api { render_validation_errors(@user) }
170 end
170 end
171 end
171 end
172 end
172 end
173
173
174 def destroy
174 def destroy
175 @user.destroy
175 @user.destroy
176 respond_to do |format|
176 respond_to do |format|
177 format.html { redirect_to_referer_or(users_url) }
177 format.html { redirect_back_or_default(users_url) }
178 format.api { render_api_ok }
178 format.api { render_api_ok }
179 end
179 end
180 end
180 end
181
181
182 def edit_membership
182 def edit_membership
183 @membership = Member.edit_membership(params[:membership_id], params[:membership], @user)
183 @membership = Member.edit_membership(params[:membership_id], params[:membership], @user)
184 @membership.save
184 @membership.save
185 respond_to do |format|
185 respond_to do |format|
186 format.html { redirect_to :controller => 'users', :action => 'edit', :id => @user, :tab => 'memberships' }
186 format.html { redirect_to :controller => 'users', :action => 'edit', :id => @user, :tab => 'memberships' }
187 format.js
187 format.js
188 end
188 end
189 end
189 end
190
190
191 def destroy_membership
191 def destroy_membership
192 @membership = Member.find(params[:membership_id])
192 @membership = Member.find(params[:membership_id])
193 if @membership.deletable?
193 if @membership.deletable?
194 @membership.destroy
194 @membership.destroy
195 end
195 end
196 respond_to do |format|
196 respond_to do |format|
197 format.html { redirect_to :controller => 'users', :action => 'edit', :id => @user, :tab => 'memberships' }
197 format.html { redirect_to :controller => 'users', :action => 'edit', :id => @user, :tab => 'memberships' }
198 format.js
198 format.js
199 end
199 end
200 end
200 end
201
201
202 private
202 private
203
203
204 def find_user
204 def find_user
205 if params[:id] == 'current'
205 if params[:id] == 'current'
206 require_login || return
206 require_login || return
207 @user = User.current
207 @user = User.current
208 else
208 else
209 @user = User.find(params[:id])
209 @user = User.find(params[:id])
210 end
210 end
211 rescue ActiveRecord::RecordNotFound
211 rescue ActiveRecord::RecordNotFound
212 render_404
212 render_404
213 end
213 end
214 end
214 end
Show file before | Show file after | Hide comments
@@ -1,58 +1,58
1 <div class="contextual">
1 <div class="contextual">
2 <%= link_to l(:label_user_new), new_user_path, :class => 'icon icon-add' %>
2 <%= link_to l(:label_user_new), new_user_path, :class => 'icon icon-add' %>
3 </div>
3 </div>
4
4
5 <h2><%=l(:label_user_plural)%></h2>
5 <h2><%=l(:label_user_plural)%></h2>
6
6
7 <%= form_tag({}, :method => :get) do %>
7 <%= form_tag({}, :method => :get) do %>
8 <fieldset><legend><%= l(:label_filter_plural) %></legend>
8 <fieldset><legend><%= l(:label_filter_plural) %></legend>
9 <label for='status'><%= l(:field_status) %>:</label>
9 <label for='status'><%= l(:field_status) %>:</label>
10 <%= select_tag 'status', users_status_options_for_select(@status), :class => "small", :onchange => "this.form.submit(); return false;" %>
10 <%= select_tag 'status', users_status_options_for_select(@status), :class => "small", :onchange => "this.form.submit(); return false;" %>
11
11
12 <% if @groups.present? %>
12 <% if @groups.present? %>
13 <label for='group_id'><%= l(:label_group) %>:</label>
13 <label for='group_id'><%= l(:label_group) %>:</label>
14 <%= select_tag 'group_id', content_tag('option') + options_from_collection_for_select(@groups, :id, :name, params[:group_id].to_i), :onchange => "this.form.submit(); return false;" %>
14 <%= select_tag 'group_id', content_tag('option') + options_from_collection_for_select(@groups, :id, :name, params[:group_id].to_i), :onchange => "this.form.submit(); return false;" %>
15 <% end %>
15 <% end %>
16
16
17 <label for='name'><%= l(:label_user) %>:</label>
17 <label for='name'><%= l(:label_user) %>:</label>
18 <%= text_field_tag 'name', params[:name], :size => 30 %>
18 <%= text_field_tag 'name', params[:name], :size => 30 %>
19 <%= submit_tag l(:button_apply), :class => "small", :name => nil %>
19 <%= submit_tag l(:button_apply), :class => "small", :name => nil %>
20 <%= link_to l(:button_clear), users_path, :class => 'icon icon-reload' %>
20 <%= link_to l(:button_clear), users_path, :class => 'icon icon-reload' %>
21 </fieldset>
21 </fieldset>
22 <% end %>
22 <% end %>
23 &nbsp;
23 &nbsp;
24
24
25 <div class="autoscroll">
25 <div class="autoscroll">
26 <table class="list">
26 <table class="list">
27 <thead><tr>
27 <thead><tr>
28 <%= sort_header_tag('login', :caption => l(:field_login)) %>
28 <%= sort_header_tag('login', :caption => l(:field_login)) %>
29 <%= sort_header_tag('firstname', :caption => l(:field_firstname)) %>
29 <%= sort_header_tag('firstname', :caption => l(:field_firstname)) %>
30 <%= sort_header_tag('lastname', :caption => l(:field_lastname)) %>
30 <%= sort_header_tag('lastname', :caption => l(:field_lastname)) %>
31 <%= sort_header_tag('mail', :caption => l(:field_mail)) %>
31 <%= sort_header_tag('mail', :caption => l(:field_mail)) %>
32 <%= sort_header_tag('admin', :caption => l(:field_admin), :default_order => 'desc') %>
32 <%= sort_header_tag('admin', :caption => l(:field_admin), :default_order => 'desc') %>
33 <%= sort_header_tag('created_on', :caption => l(:field_created_on), :default_order => 'desc') %>
33 <%= sort_header_tag('created_on', :caption => l(:field_created_on), :default_order => 'desc') %>
34 <%= sort_header_tag('last_login_on', :caption => l(:field_last_login_on), :default_order => 'desc') %>
34 <%= sort_header_tag('last_login_on', :caption => l(:field_last_login_on), :default_order => 'desc') %>
35 <th></th>
35 <th></th>
36 </tr></thead>
36 </tr></thead>
37 <tbody>
37 <tbody>
38 <% for user in @users -%>
38 <% for user in @users -%>
39 <tr class="user <%= cycle("odd", "even") %> <%= %w(anon active registered locked)[user.status] %>">
39 <tr class="user <%= cycle("odd", "even") %> <%= %w(anon active registered locked)[user.status] %>">
40 <td class="username"><%= avatar(user, :size => "14") %><%= link_to h(user.login), edit_user_path(user) %></td>
40 <td class="username"><%= avatar(user, :size => "14") %><%= link_to h(user.login), edit_user_path(user) %></td>
41 <td class="firstname"><%= h(user.firstname) %></td>
41 <td class="firstname"><%= h(user.firstname) %></td>
42 <td class="lastname"><%= h(user.lastname) %></td>
42 <td class="lastname"><%= h(user.lastname) %></td>
43 <td class="email"><%= mail_to(h(user.mail)) %></td>
43 <td class="email"><%= mail_to(h(user.mail)) %></td>
44 <td align="center"><%= checked_image user.admin? %></td>
44 <td align="center"><%= checked_image user.admin? %></td>
45 <td class="created_on" align="center"><%= format_time(user.created_on) %></td>
45 <td class="created_on" align="center"><%= format_time(user.created_on) %></td>
46 <td class="last_login_on" align="center"><%= format_time(user.last_login_on) unless user.last_login_on.nil? %></td>
46 <td class="last_login_on" align="center"><%= format_time(user.last_login_on) unless user.last_login_on.nil? %></td>
47 <td class="buttons">
47 <td class="buttons">
48 <%= change_status_link(user) %>
48 <%= change_status_link(user) %>
49 <%= delete_link user_path(user) unless User.current == user %>
49 <%= delete_link user_path(user, :back_url => users_path(params)) unless User.current == user %>
50 </td>
50 </td>
51 </tr>
51 </tr>
52 <% end -%>
52 <% end -%>
53 </tbody>
53 </tbody>
54 </table>
54 </table>
55 </div>
55 </div>
56 <p class="pagination"><%= pagination_links_full @user_pages, @user_count %></p>
56 <p class="pagination"><%= pagination_links_full @user_pages, @user_count %></p>
57
57
58 <% html_title(l(:label_user_plural)) -%>
58 <% html_title(l(:label_user_plural)) -%>
Show file before | Show file after | Hide comments
@@ -1,425 +1,432
1 # Redmine - project management software
1 # Redmine - project management software
2 # Copyright (C) 2006-2012 Jean-Philippe Lang
2 # Copyright (C) 2006-2012 Jean-Philippe Lang
3 #
3 #
4 # This program is free software; you can redistribute it and/or
4 # This program is free software; you can redistribute it and/or
5 # modify it under the terms of the GNU General Public License
5 # modify it under the terms of the GNU General Public License
6 # as published by the Free Software Foundation; either version 2
6 # as published by the Free Software Foundation; either version 2
7 # of the License, or (at your option) any later version.
7 # of the License, or (at your option) any later version.
8 #
8 #
9 # This program is distributed in the hope that it will be useful,
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
12 # GNU General Public License for more details.
13 #
13 #
14 # You should have received a copy of the GNU General Public License
14 # You should have received a copy of the GNU General Public License
15 # along with this program; if not, write to the Free Software
15 # along with this program; if not, write to the Free Software
16 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
16 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
17
17
18 require File.expand_path('../../test_helper', __FILE__)
18 require File.expand_path('../../test_helper', __FILE__)
19 require 'users_controller'
19 require 'users_controller'
20
20
21 # Re-raise errors caught by the controller.
21 # Re-raise errors caught by the controller.
22 class UsersController; def rescue_action(e) raise e end; end
22 class UsersController; def rescue_action(e) raise e end; end
23
23
24 class UsersControllerTest < ActionController::TestCase
24 class UsersControllerTest < ActionController::TestCase
25 include Redmine::I18n
25 include Redmine::I18n
26
26
27 fixtures :users, :projects, :members, :member_roles, :roles,
27 fixtures :users, :projects, :members, :member_roles, :roles,
28 :custom_fields, :custom_values, :groups_users,
28 :custom_fields, :custom_values, :groups_users,
29 :auth_sources
29 :auth_sources
30
30
31 def setup
31 def setup
32 @controller = UsersController.new
32 @controller = UsersController.new
33 @request = ActionController::TestRequest.new
33 @request = ActionController::TestRequest.new
34 @response = ActionController::TestResponse.new
34 @response = ActionController::TestResponse.new
35 User.current = nil
35 User.current = nil
36 @request.session[:user_id] = 1 # admin
36 @request.session[:user_id] = 1 # admin
37 end
37 end
38
38
39 def test_index
39 def test_index
40 get :index
40 get :index
41 assert_response :success
41 assert_response :success
42 assert_template 'index'
42 assert_template 'index'
43 end
43 end
44
44
45 def test_index
45 def test_index
46 get :index
46 get :index
47 assert_response :success
47 assert_response :success
48 assert_template 'index'
48 assert_template 'index'
49 assert_not_nil assigns(:users)
49 assert_not_nil assigns(:users)
50 # active users only
50 # active users only
51 assert_nil assigns(:users).detect {|u| !u.active?}
51 assert_nil assigns(:users).detect {|u| !u.active?}
52 end
52 end
53
53
54 def test_index_with_status_filter
54 def test_index_with_status_filter
55 get :index, :status => 3
55 get :index, :status => 3
56 assert_response :success
56 assert_response :success
57 assert_template 'index'
57 assert_template 'index'
58 assert_not_nil assigns(:users)
58 assert_not_nil assigns(:users)
59 assert_equal [3], assigns(:users).map(&:status).uniq
59 assert_equal [3], assigns(:users).map(&:status).uniq
60 end
60 end
61
61
62 def test_index_with_name_filter
62 def test_index_with_name_filter
63 get :index, :name => 'john'
63 get :index, :name => 'john'
64 assert_response :success
64 assert_response :success
65 assert_template 'index'
65 assert_template 'index'
66 users = assigns(:users)
66 users = assigns(:users)
67 assert_not_nil users
67 assert_not_nil users
68 assert_equal 1, users.size
68 assert_equal 1, users.size
69 assert_equal 'John', users.first.firstname
69 assert_equal 'John', users.first.firstname
70 end
70 end
71
71
72 def test_index_with_group_filter
72 def test_index_with_group_filter
73 get :index, :group_id => '10'
73 get :index, :group_id => '10'
74 assert_response :success
74 assert_response :success
75 assert_template 'index'
75 assert_template 'index'
76 users = assigns(:users)
76 users = assigns(:users)
77 assert users.any?
77 assert users.any?
78 assert_equal([], (users - Group.find(10).users))
78 assert_equal([], (users - Group.find(10).users))
79 assert_select 'select[name=group_id]' do
79 assert_select 'select[name=group_id]' do
80 assert_select 'option[value=10][selected=selected]'
80 assert_select 'option[value=10][selected=selected]'
81 end
81 end
82 end
82 end
83
83
84 def test_show
84 def test_show
85 @request.session[:user_id] = nil
85 @request.session[:user_id] = nil
86 get :show, :id => 2
86 get :show, :id => 2
87 assert_response :success
87 assert_response :success
88 assert_template 'show'
88 assert_template 'show'
89 assert_not_nil assigns(:user)
89 assert_not_nil assigns(:user)
90
90
91 assert_tag 'li', :content => /Phone number/
91 assert_tag 'li', :content => /Phone number/
92 end
92 end
93
93
94 def test_show_should_not_display_hidden_custom_fields
94 def test_show_should_not_display_hidden_custom_fields
95 @request.session[:user_id] = nil
95 @request.session[:user_id] = nil
96 UserCustomField.find_by_name('Phone number').update_attribute :visible, false
96 UserCustomField.find_by_name('Phone number').update_attribute :visible, false
97 get :show, :id => 2
97 get :show, :id => 2
98 assert_response :success
98 assert_response :success
99 assert_template 'show'
99 assert_template 'show'
100 assert_not_nil assigns(:user)
100 assert_not_nil assigns(:user)
101
101
102 assert_no_tag 'li', :content => /Phone number/
102 assert_no_tag 'li', :content => /Phone number/
103 end
103 end
104
104
105 def test_show_should_not_fail_when_custom_values_are_nil
105 def test_show_should_not_fail_when_custom_values_are_nil
106 user = User.find(2)
106 user = User.find(2)
107
107
108 # Create a custom field to illustrate the issue
108 # Create a custom field to illustrate the issue
109 custom_field = CustomField.create!(:name => 'Testing', :field_format => 'text')
109 custom_field = CustomField.create!(:name => 'Testing', :field_format => 'text')
110 custom_value = user.custom_values.build(:custom_field => custom_field).save!
110 custom_value = user.custom_values.build(:custom_field => custom_field).save!
111
111
112 get :show, :id => 2
112 get :show, :id => 2
113 assert_response :success
113 assert_response :success
114 end
114 end
115
115
116 def test_show_inactive
116 def test_show_inactive
117 @request.session[:user_id] = nil
117 @request.session[:user_id] = nil
118 get :show, :id => 5
118 get :show, :id => 5
119 assert_response 404
119 assert_response 404
120 end
120 end
121
121
122 def test_show_should_not_reveal_users_with_no_visible_activity_or_project
122 def test_show_should_not_reveal_users_with_no_visible_activity_or_project
123 @request.session[:user_id] = nil
123 @request.session[:user_id] = nil
124 get :show, :id => 9
124 get :show, :id => 9
125 assert_response 404
125 assert_response 404
126 end
126 end
127
127
128 def test_show_inactive_by_admin
128 def test_show_inactive_by_admin
129 @request.session[:user_id] = 1
129 @request.session[:user_id] = 1
130 get :show, :id => 5
130 get :show, :id => 5
131 assert_response 200
131 assert_response 200
132 assert_not_nil assigns(:user)
132 assert_not_nil assigns(:user)
133 end
133 end
134
134
135 def test_show_displays_memberships_based_on_project_visibility
135 def test_show_displays_memberships_based_on_project_visibility
136 @request.session[:user_id] = 1
136 @request.session[:user_id] = 1
137 get :show, :id => 2
137 get :show, :id => 2
138 assert_response :success
138 assert_response :success
139 memberships = assigns(:memberships)
139 memberships = assigns(:memberships)
140 assert_not_nil memberships
140 assert_not_nil memberships
141 project_ids = memberships.map(&:project_id)
141 project_ids = memberships.map(&:project_id)
142 assert project_ids.include?(2) #private project admin can see
142 assert project_ids.include?(2) #private project admin can see
143 end
143 end
144
144
145 def test_show_current_should_require_authentication
145 def test_show_current_should_require_authentication
146 @request.session[:user_id] = nil
146 @request.session[:user_id] = nil
147 get :show, :id => 'current'
147 get :show, :id => 'current'
148 assert_response 302
148 assert_response 302
149 end
149 end
150
150
151 def test_show_current
151 def test_show_current
152 @request.session[:user_id] = 2
152 @request.session[:user_id] = 2
153 get :show, :id => 'current'
153 get :show, :id => 'current'
154 assert_response :success
154 assert_response :success
155 assert_template 'show'
155 assert_template 'show'
156 assert_equal User.find(2), assigns(:user)
156 assert_equal User.find(2), assigns(:user)
157 end
157 end
158
158
159 def test_new
159 def test_new
160 get :new
160 get :new
161 assert_response :success
161 assert_response :success
162 assert_template :new
162 assert_template :new
163 assert assigns(:user)
163 assert assigns(:user)
164 end
164 end
165
165
166 def test_create
166 def test_create
167 Setting.bcc_recipients = '1'
167 Setting.bcc_recipients = '1'
168
168
169 assert_difference 'User.count' do
169 assert_difference 'User.count' do
170 assert_difference 'ActionMailer::Base.deliveries.size' do
170 assert_difference 'ActionMailer::Base.deliveries.size' do
171 post :create,
171 post :create,
172 :user => {
172 :user => {
173 :firstname => 'John',
173 :firstname => 'John',
174 :lastname => 'Doe',
174 :lastname => 'Doe',
175 :login => 'jdoe',
175 :login => 'jdoe',
176 :password => 'secret',
176 :password => 'secret',
177 :password_confirmation => 'secret',
177 :password_confirmation => 'secret',
178 :mail => 'jdoe@gmail.com',
178 :mail => 'jdoe@gmail.com',
179 :mail_notification => 'none'
179 :mail_notification => 'none'
180 },
180 },
181 :send_information => '1'
181 :send_information => '1'
182 end
182 end
183 end
183 end
184
184
185 user = User.first(:order => 'id DESC')
185 user = User.first(:order => 'id DESC')
186 assert_redirected_to :controller => 'users', :action => 'edit', :id => user.id
186 assert_redirected_to :controller => 'users', :action => 'edit', :id => user.id
187
187
188 assert_equal 'John', user.firstname
188 assert_equal 'John', user.firstname
189 assert_equal 'Doe', user.lastname
189 assert_equal 'Doe', user.lastname
190 assert_equal 'jdoe', user.login
190 assert_equal 'jdoe', user.login
191 assert_equal 'jdoe@gmail.com', user.mail
191 assert_equal 'jdoe@gmail.com', user.mail
192 assert_equal 'none', user.mail_notification
192 assert_equal 'none', user.mail_notification
193 assert user.check_password?('secret')
193 assert user.check_password?('secret')
194
194
195 mail = ActionMailer::Base.deliveries.last
195 mail = ActionMailer::Base.deliveries.last
196 assert_not_nil mail
196 assert_not_nil mail
197 assert_equal [user.mail], mail.bcc
197 assert_equal [user.mail], mail.bcc
198 assert_mail_body_match 'secret', mail
198 assert_mail_body_match 'secret', mail
199 end
199 end
200
200
201 def test_create_with_preferences
201 def test_create_with_preferences
202 assert_difference 'User.count' do
202 assert_difference 'User.count' do
203 post :create,
203 post :create,
204 :user => {
204 :user => {
205 :firstname => 'John',
205 :firstname => 'John',
206 :lastname => 'Doe',
206 :lastname => 'Doe',
207 :login => 'jdoe',
207 :login => 'jdoe',
208 :password => 'secret',
208 :password => 'secret',
209 :password_confirmation => 'secret',
209 :password_confirmation => 'secret',
210 :mail => 'jdoe@gmail.com',
210 :mail => 'jdoe@gmail.com',
211 :mail_notification => 'none'
211 :mail_notification => 'none'
212 },
212 },
213 :pref => {
213 :pref => {
214 'hide_mail' => '1',
214 'hide_mail' => '1',
215 'time_zone' => 'Paris',
215 'time_zone' => 'Paris',
216 'comments_sorting' => 'desc',
216 'comments_sorting' => 'desc',
217 'warn_on_leaving_unsaved' => '0'
217 'warn_on_leaving_unsaved' => '0'
218 }
218 }
219 end
219 end
220 user = User.first(:order => 'id DESC')
220 user = User.first(:order => 'id DESC')
221 assert_equal 'jdoe', user.login
221 assert_equal 'jdoe', user.login
222 assert_equal true, user.pref.hide_mail
222 assert_equal true, user.pref.hide_mail
223 assert_equal 'Paris', user.pref.time_zone
223 assert_equal 'Paris', user.pref.time_zone
224 assert_equal 'desc', user.pref[:comments_sorting]
224 assert_equal 'desc', user.pref[:comments_sorting]
225 assert_equal '0', user.pref[:warn_on_leaving_unsaved]
225 assert_equal '0', user.pref[:warn_on_leaving_unsaved]
226 end
226 end
227
227
228 def test_create_with_failure
228 def test_create_with_failure
229 assert_no_difference 'User.count' do
229 assert_no_difference 'User.count' do
230 post :create, :user => {}
230 post :create, :user => {}
231 end
231 end
232 assert_response :success
232 assert_response :success
233 assert_template 'new'
233 assert_template 'new'
234 end
234 end
235
235
236 def test_edit
236 def test_edit
237 get :edit, :id => 2
237 get :edit, :id => 2
238 assert_response :success
238 assert_response :success
239 assert_template 'edit'
239 assert_template 'edit'
240 assert_equal User.find(2), assigns(:user)
240 assert_equal User.find(2), assigns(:user)
241 end
241 end
242
242
243 def test_update
243 def test_update
244 ActionMailer::Base.deliveries.clear
244 ActionMailer::Base.deliveries.clear
245 put :update, :id => 2,
245 put :update, :id => 2,
246 :user => {:firstname => 'Changed', :mail_notification => 'only_assigned'},
246 :user => {:firstname => 'Changed', :mail_notification => 'only_assigned'},
247 :pref => {:hide_mail => '1', :comments_sorting => 'desc'}
247 :pref => {:hide_mail => '1', :comments_sorting => 'desc'}
248 user = User.find(2)
248 user = User.find(2)
249 assert_equal 'Changed', user.firstname
249 assert_equal 'Changed', user.firstname
250 assert_equal 'only_assigned', user.mail_notification
250 assert_equal 'only_assigned', user.mail_notification
251 assert_equal true, user.pref[:hide_mail]
251 assert_equal true, user.pref[:hide_mail]
252 assert_equal 'desc', user.pref[:comments_sorting]
252 assert_equal 'desc', user.pref[:comments_sorting]
253 assert ActionMailer::Base.deliveries.empty?
253 assert ActionMailer::Base.deliveries.empty?
254 end
254 end
255
255
256 def test_update_with_failure
256 def test_update_with_failure
257 assert_no_difference 'User.count' do
257 assert_no_difference 'User.count' do
258 put :update, :id => 2, :user => {:firstname => ''}
258 put :update, :id => 2, :user => {:firstname => ''}
259 end
259 end
260 assert_response :success
260 assert_response :success
261 assert_template 'edit'
261 assert_template 'edit'
262 end
262 end
263
263
264 def test_update_with_group_ids_should_assign_groups
264 def test_update_with_group_ids_should_assign_groups
265 put :update, :id => 2, :user => {:group_ids => ['10']}
265 put :update, :id => 2, :user => {:group_ids => ['10']}
266 user = User.find(2)
266 user = User.find(2)
267 assert_equal [10], user.group_ids
267 assert_equal [10], user.group_ids
268 end
268 end
269
269
270 def test_update_with_activation_should_send_a_notification
270 def test_update_with_activation_should_send_a_notification
271 u = User.new(:firstname => 'Foo', :lastname => 'Bar', :mail => 'foo.bar@somenet.foo', :language => 'fr')
271 u = User.new(:firstname => 'Foo', :lastname => 'Bar', :mail => 'foo.bar@somenet.foo', :language => 'fr')
272 u.login = 'foo'
272 u.login = 'foo'
273 u.status = User::STATUS_REGISTERED
273 u.status = User::STATUS_REGISTERED
274 u.save!
274 u.save!
275 ActionMailer::Base.deliveries.clear
275 ActionMailer::Base.deliveries.clear
276 Setting.bcc_recipients = '1'
276 Setting.bcc_recipients = '1'
277
277
278 put :update, :id => u.id, :user => {:status => User::STATUS_ACTIVE}
278 put :update, :id => u.id, :user => {:status => User::STATUS_ACTIVE}
279 assert u.reload.active?
279 assert u.reload.active?
280 mail = ActionMailer::Base.deliveries.last
280 mail = ActionMailer::Base.deliveries.last
281 assert_not_nil mail
281 assert_not_nil mail
282 assert_equal ['foo.bar@somenet.foo'], mail.bcc
282 assert_equal ['foo.bar@somenet.foo'], mail.bcc
283 assert_mail_body_match ll('fr', :notice_account_activated), mail
283 assert_mail_body_match ll('fr', :notice_account_activated), mail
284 end
284 end
285
285
286 def test_update_with_password_change_should_send_a_notification
286 def test_update_with_password_change_should_send_a_notification
287 ActionMailer::Base.deliveries.clear
287 ActionMailer::Base.deliveries.clear
288 Setting.bcc_recipients = '1'
288 Setting.bcc_recipients = '1'
289
289
290 put :update, :id => 2, :user => {:password => 'newpass', :password_confirmation => 'newpass'}, :send_information => '1'
290 put :update, :id => 2, :user => {:password => 'newpass', :password_confirmation => 'newpass'}, :send_information => '1'
291 u = User.find(2)
291 u = User.find(2)
292 assert u.check_password?('newpass')
292 assert u.check_password?('newpass')
293
293
294 mail = ActionMailer::Base.deliveries.last
294 mail = ActionMailer::Base.deliveries.last
295 assert_not_nil mail
295 assert_not_nil mail
296 assert_equal [u.mail], mail.bcc
296 assert_equal [u.mail], mail.bcc
297 assert_mail_body_match 'newpass', mail
297 assert_mail_body_match 'newpass', mail
298 end
298 end
299
299
300 def test_update_user_switchin_from_auth_source_to_password_authentication
300 def test_update_user_switchin_from_auth_source_to_password_authentication
301 # Configure as auth source
301 # Configure as auth source
302 u = User.find(2)
302 u = User.find(2)
303 u.auth_source = AuthSource.find(1)
303 u.auth_source = AuthSource.find(1)
304 u.save!
304 u.save!
305
305
306 put :update, :id => u.id, :user => {:auth_source_id => '', :password => 'newpass', :password_confirmation => 'newpass'}
306 put :update, :id => u.id, :user => {:auth_source_id => '', :password => 'newpass', :password_confirmation => 'newpass'}
307
307
308 assert_equal nil, u.reload.auth_source
308 assert_equal nil, u.reload.auth_source
309 assert u.check_password?('newpass')
309 assert u.check_password?('newpass')
310 end
310 end
311
311
312 def test_update_notified_project
312 def test_update_notified_project
313 get :edit, :id => 2
313 get :edit, :id => 2
314 assert_response :success
314 assert_response :success
315 assert_template 'edit'
315 assert_template 'edit'
316 u = User.find(2)
316 u = User.find(2)
317 assert_equal [1, 2, 5], u.projects.collect{|p| p.id}.sort
317 assert_equal [1, 2, 5], u.projects.collect{|p| p.id}.sort
318 assert_equal [1, 2, 5], u.notified_projects_ids.sort
318 assert_equal [1, 2, 5], u.notified_projects_ids.sort
319 assert_tag :tag => 'input',
319 assert_tag :tag => 'input',
320 :attributes => {
320 :attributes => {
321 :id => 'notified_project_ids_',
321 :id => 'notified_project_ids_',
322 :value => 1,
322 :value => 1,
323 }
323 }
324 assert_equal 'all', u.mail_notification
324 assert_equal 'all', u.mail_notification
325 put :update, :id => 2,
325 put :update, :id => 2,
326 :user => {
326 :user => {
327 :mail_notification => 'selected',
327 :mail_notification => 'selected',
328 },
328 },
329 :notified_project_ids => [1, 2]
329 :notified_project_ids => [1, 2]
330 u = User.find(2)
330 u = User.find(2)
331 assert_equal 'selected', u.mail_notification
331 assert_equal 'selected', u.mail_notification
332 assert_equal [1, 2], u.notified_projects_ids.sort
332 assert_equal [1, 2], u.notified_projects_ids.sort
333 end
333 end
334
334
335 def test_destroy
335 def test_destroy
336 assert_difference 'User.count', -1 do
336 assert_difference 'User.count', -1 do
337 delete :destroy, :id => 2
337 delete :destroy, :id => 2
338 end
338 end
339 assert_redirected_to '/users'
339 assert_redirected_to '/users'
340 assert_nil User.find_by_id(2)
340 assert_nil User.find_by_id(2)
341 end
341 end
342
342
343 def test_destroy_should_be_denied_for_non_admin_users
343 def test_destroy_should_be_denied_for_non_admin_users
344 @request.session[:user_id] = 3
344 @request.session[:user_id] = 3
345
345
346 assert_no_difference 'User.count' do
346 assert_no_difference 'User.count' do
347 get :destroy, :id => 2
347 get :destroy, :id => 2
348 end
348 end
349 assert_response 403
349 assert_response 403
350 end
350 end
351
351
352 def test_destroy_should_redirect_to_back_url_param
353 assert_difference 'User.count', -1 do
354 delete :destroy, :id => 2, :back_url => '/users?name=foo'
355 end
356 assert_redirected_to '/users?name=foo'
357 end
358
352 def test_create_membership
359 def test_create_membership
353 assert_difference 'Member.count' do
360 assert_difference 'Member.count' do
354 post :edit_membership, :id => 7, :membership => { :project_id => 3, :role_ids => [2]}
361 post :edit_membership, :id => 7, :membership => { :project_id => 3, :role_ids => [2]}
355 end
362 end
356 assert_redirected_to :action => 'edit', :id => '7', :tab => 'memberships'
363 assert_redirected_to :action => 'edit', :id => '7', :tab => 'memberships'
357 member = Member.first(:order => 'id DESC')
364 member = Member.first(:order => 'id DESC')
358 assert_equal User.find(7), member.principal
365 assert_equal User.find(7), member.principal
359 assert_equal [2], member.role_ids
366 assert_equal [2], member.role_ids
360 assert_equal 3, member.project_id
367 assert_equal 3, member.project_id
361 end
368 end
362
369
363 def test_create_membership_js_format
370 def test_create_membership_js_format
364 assert_difference 'Member.count' do
371 assert_difference 'Member.count' do
365 post :edit_membership, :id => 7, :membership => {:project_id => 3, :role_ids => [2]}, :format => 'js'
372 post :edit_membership, :id => 7, :membership => {:project_id => 3, :role_ids => [2]}, :format => 'js'
366 assert_response :success
373 assert_response :success
367 assert_template 'edit_membership'
374 assert_template 'edit_membership'
368 assert_equal 'text/javascript', response.content_type
375 assert_equal 'text/javascript', response.content_type
369 end
376 end
370 member = Member.first(:order => 'id DESC')
377 member = Member.first(:order => 'id DESC')
371 assert_equal User.find(7), member.principal
378 assert_equal User.find(7), member.principal
372 assert_equal [2], member.role_ids
379 assert_equal [2], member.role_ids
373 assert_equal 3, member.project_id
380 assert_equal 3, member.project_id
374 assert_include 'tab-content-memberships', response.body
381 assert_include 'tab-content-memberships', response.body
375 end
382 end
376
383
377 def test_create_membership_js_format_with_failure
384 def test_create_membership_js_format_with_failure
378 assert_no_difference 'Member.count' do
385 assert_no_difference 'Member.count' do
379 post :edit_membership, :id => 7, :membership => {:project_id => 3}, :format => 'js'
386 post :edit_membership, :id => 7, :membership => {:project_id => 3}, :format => 'js'
380 assert_response :success
387 assert_response :success
381 assert_template 'edit_membership'
388 assert_template 'edit_membership'
382 assert_equal 'text/javascript', response.content_type
389 assert_equal 'text/javascript', response.content_type
383 end
390 end
384 assert_include 'alert', response.body, "Alert message not sent"
391 assert_include 'alert', response.body, "Alert message not sent"
385 assert_include 'Role can\\\'t be empty', response.body, "Error message not sent"
392 assert_include 'Role can\\\'t be empty', response.body, "Error message not sent"
386 end
393 end
387
394
388 def test_update_membership
395 def test_update_membership
389 assert_no_difference 'Member.count' do
396 assert_no_difference 'Member.count' do
390 put :edit_membership, :id => 2, :membership_id => 1, :membership => { :role_ids => [2]}
397 put :edit_membership, :id => 2, :membership_id => 1, :membership => { :role_ids => [2]}
391 assert_redirected_to :action => 'edit', :id => '2', :tab => 'memberships'
398 assert_redirected_to :action => 'edit', :id => '2', :tab => 'memberships'
392 end
399 end
393 assert_equal [2], Member.find(1).role_ids
400 assert_equal [2], Member.find(1).role_ids
394 end
401 end
395
402
396 def test_update_membership_js_format
403 def test_update_membership_js_format
397 assert_no_difference 'Member.count' do
404 assert_no_difference 'Member.count' do
398 put :edit_membership, :id => 2, :membership_id => 1, :membership => {:role_ids => [2]}, :format => 'js'
405 put :edit_membership, :id => 2, :membership_id => 1, :membership => {:role_ids => [2]}, :format => 'js'
399 assert_response :success
406 assert_response :success
400 assert_template 'edit_membership'
407 assert_template 'edit_membership'
401 assert_equal 'text/javascript', response.content_type
408 assert_equal 'text/javascript', response.content_type
402 end
409 end
403 assert_equal [2], Member.find(1).role_ids
410 assert_equal [2], Member.find(1).role_ids
404 assert_include 'tab-content-memberships', response.body
411 assert_include 'tab-content-memberships', response.body
405 end
412 end
406
413
407 def test_destroy_membership
414 def test_destroy_membership
408 assert_difference 'Member.count', -1 do
415 assert_difference 'Member.count', -1 do
409 delete :destroy_membership, :id => 2, :membership_id => 1
416 delete :destroy_membership, :id => 2, :membership_id => 1
410 end
417 end
411 assert_redirected_to :action => 'edit', :id => '2', :tab => 'memberships'
418 assert_redirected_to :action => 'edit', :id => '2', :tab => 'memberships'
412 assert_nil Member.find_by_id(1)
419 assert_nil Member.find_by_id(1)
413 end
420 end
414
421
415 def test_destroy_membership_js_format
422 def test_destroy_membership_js_format
416 assert_difference 'Member.count', -1 do
423 assert_difference 'Member.count', -1 do
417 delete :destroy_membership, :id => 2, :membership_id => 1, :format => 'js'
424 delete :destroy_membership, :id => 2, :membership_id => 1, :format => 'js'
418 assert_response :success
425 assert_response :success
419 assert_template 'destroy_membership'
426 assert_template 'destroy_membership'
420 assert_equal 'text/javascript', response.content_type
427 assert_equal 'text/javascript', response.content_type
421 end
428 end
422 assert_nil Member.find_by_id(1)
429 assert_nil Member.find_by_id(1)
423 assert_include 'tab-content-memberships', response.body
430 assert_include 'tab-content-memberships', response.body
424 end
431 end
425 end
432 end
General Comments 0
You need to be logged in to leave comments. Login now