diff options
Diffstat (limited to 'spec')
| -rw-r--r-- | spec/requests/companies_controller/create_companies_controller_spec.rb | 16 | ||||
| -rw-r--r-- | spec/support/shared_examples/master_role_required_requests/post_request.rb | 10 |
2 files changed, 23 insertions, 3 deletions
diff --git a/spec/requests/companies_controller/create_companies_controller_spec.rb b/spec/requests/companies_controller/create_companies_controller_spec.rb index 53677f2..219868b 100644 --- a/spec/requests/companies_controller/create_companies_controller_spec.rb +++ b/spec/requests/companies_controller/create_companies_controller_spec.rb @@ -3,12 +3,12 @@ require 'rails_helper' RSpec.describe 'POST /api/companies', type: :request do - let(:user) { create(:user_account, role: 'master') } let(:company) { build(:company) } let(:logo) { fixture_file_upload('tres castillos-2.png', 'image/png') } - let(:token) { jwt(user) } it_behaves_like 'a POST request' do + let(:user) { create(:user_account, role: 'master') } + let(:token) { jwt(user) } let(:headers) { { 'CONTENT_TYPE' => 'application/json', 'Authorization' => "Bearer #{token['token']}" } } let(:route) { '/api/companies' } let(:expected_error_messages) do @@ -17,8 +17,18 @@ RSpec.describe 'POST /api/companies', type: :request do let(:desired_error_status) { 422 } let(:expected_text) { [company.name, company.short_name, company.country, 'logo', 'http'] } let(:params) do - { name: company.name, short_name: company.short_name, country: company.country, logo: logo } + { name: company.name, short_name: company.short_name, country: company.country, logo: } end let(:wrong_params) { JSON.generate({ name: '', short_name: '', country: '' }) } end + + it_behaves_like 'a POST request that requires a master user' do + let(:user) { create(:user_account, role: 'regular') } + let(:token) { jwt(user) } + let(:headers) { { 'CONTENT_TYPE' => 'application/json', 'Authorization' => "Bearer #{token['token']}" } } + let(:route) { '/api/companies' } + let(:params) do + JSON.generate({ name: company.name, short_name: company.short_name, country: company.country }) + end + end end diff --git a/spec/support/shared_examples/master_role_required_requests/post_request.rb b/spec/support/shared_examples/master_role_required_requests/post_request.rb new file mode 100644 index 0000000..9df49b1 --- /dev/null +++ b/spec/support/shared_examples/master_role_required_requests/post_request.rb @@ -0,0 +1,10 @@ +# frozen_string_literal: true + +RSpec.shared_examples 'a POST request that requires a master user' do + context 'with a regular user' do + it 'returns 403 http status' do + post(route, params:, headers:) + expect(response).to have_http_status(403) + end + end +end
\ No newline at end of file |