# frozen_string_literal: true #-- copyright # OpenProject is an open source project management software. # Copyright (C) the OpenProject GmbH # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU General Public License version 3. # # OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows: # Copyright (C) 2006-2013 Jean-Philippe Lang # Copyright (C) 2010-2013 the ChiliProject Team # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU General Public License # as published by the Free Software Foundation; either version 2 # of the License, or (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. # # See COPYRIGHT and LICENSE files for more details. #++ require "spec_helper" RSpec.describe RepositoriesController do let(:project) { create(:project) } let(:user) { create(:user, member_with_permissions: { project => permissions }) } let(:permissions) { [] } let (:url) { "file:///tmp/something/does/not/exist.svn" } let(:repository) do allow(Setting).to receive(:enabled_scm).and_return(["subversion"]) repo = build_stubbed(:repository_subversion, scm_type: "local", url:, project:) allow(repo).to receive_messages({ default_branch: "master", branches: ["master"], save: true }) repo end before do login_as(user) visible_relation = instance_double(Project.all.class).as_null_object allow(Project).to receive(:visible).and_return(visible_relation) allow(visible_relation).to receive(:find).and_return(project) allow(project).to receive(:repository).and_return(repository) end describe "manages the repository" do let(:permissions) { [:manage_repository] } before do # authorization checked in spec/permissions/manage_repositories_spec.rb allow(controller).to receive(:authorize).and_return(true) end context "with #destroy" do before do allow(repository).to receive(:destroy).and_return(true) delete :destroy, params: { project_id: project.id }, xhr: true end it "redirects to settings" do expect(response).to redirect_to project_settings_repository_path(project.identifier) end end context "with #update" do before do put :update, params: { project_id: project.id }, xhr: true end it "redirects to settings" do expect(response).to redirect_to project_settings_repository_path(project.identifier) end end context "with #create" do before do post :create, params: { project_id: project.id, scm_vendor: "subversion", scm_type: "local", url: "file:///tmp/repo.svn/" } end it "redirects to settings" do expect(response).to redirect_to project_settings_repository_path(project.identifier) end end end describe "with empty repository" do let(:permissions) { [:browse_repository] } before do allow(repository.scm) .to receive(:check_availability!) .and_raise(OpenProject::SCM::Exceptions::SCMEmpty) end context "with #show" do before do get :show, params: { project_id: project.identifier } end it "renders an empty warning view" do expect(response).to render_template "repositories/empty" expect(response.code).to eq("200") end end context "with #show and checkout" do render_views let(:checkout_hash) do { "subversion" => { "enabled" => "1", "text" => "foo", "base_url" => "http://localhost" } } end before do allow(Setting).to receive(:repository_checkout_data).and_return(checkout_hash) get :show, params: { project_id: project.identifier } end it "renders an empty warning view" do expect(response).to render_template "repositories/empty" expect(response).to render_template partial: "repositories/_checkout_instructions" expect(response.code).to eq("200") end end end describe "with subversion repository" do with_subversion_repository do |repo_dir| let(:root_url) { repo_dir } let(:url) { "file://#{root_url}" } let(:repository) do create(:repository_subversion, project:, url:, root_url: url) end describe "commits per author graph" do before do get :graph, params: { project_id: project.identifier, graph: "commits_per_author" } end context "requested by an authorized user" do let(:permissions) { %i[browse_repository view_commit_author_statistics] } it "is successful" do expect(response).to be_successful end it "has the right content type" do expect(response.content_type).to eq("image/svg+xml") end end context "requested by an unauthorized user" do let(:permissions) { [:browse_repository] } it "returns 403" do expect(response.code).to eq("403") end end end describe "committers" do let(:permissions) { [:manage_repository] } describe "#get" do before do get :committers, params: { project_id: project.id } end it "is successful" do expect(response).to be_successful expect(response).to render_template "repositories/committers" end end describe "#post" do before do repository.fetch_changesets post :committers, params: { project_id: project.id, committers: { "0" => ["oliver", user.id] }, commit: "Update" } end it "is successful" do expect(response).to redirect_to committers_project_repository_path(project) expect(repository.committers).to include(["oliver", user.id]) end end end describe "stats" do before do get :stats, params: { project_id: project.identifier } end describe "requested by a user with view_commit_author_statistics permission" do let(:permissions) { %i[browse_repository view_commit_author_statistics] } it "show the commits per author graph" do expect(assigns(:show_commits_per_author)).to be(true) end end describe "requested by a user without view_commit_author_statistics permission" do let(:permissions) { [:browse_repository] } it "does not show the commits per author graph" do expect(assigns(:show_commits_per_author)).to be(false) end end end shared_examples "renders the repository title" do |active_breadcrumb| it do expect(response).to be_successful expect(response.body).to have_css(".PageHeader-breadcrumbs", text: active_breadcrumb) end end describe "show" do render_views let(:permissions) { [:browse_repository] } before do get :show, params: { project_id: project.identifier, repo_path: path } end context "with brackets" do let(:path) { "subversion_test/[folder_with_brackets]" } it_behaves_like "renders the repository title", "[folder_with_brackets]" end context "with unicode" do let(:path) { "Föbar/äm/Sägepütz!%5D§" } it_behaves_like "renders the repository title", "Sägepütz!%5D§" end end describe "changes" do render_views let(:permissions) { [:browse_repository] } before do get :changes, params: { project_id: project.identifier, repo_path: path } expect(response).to be_successful end context "with brackets" do let(:path) { "subversion_test/[folder_with_brackets]" } it_behaves_like "renders the repository title", "[folder_with_brackets]" end context "with unicode" do let(:path) { "Föbar/äm" } it_behaves_like "renders the repository title", "äm" end end describe "#entry" do let(:permissions) { [:browse_repository] } it "serves raw files as application/octet-stream attachment" do get :entry, params: { project_id: project.identifier, repo_path: "subversion_test/textfile.txt", format: "raw" } expect(response).to be_successful expect(response.headers["Content-Type"]).to eq("application/octet-stream") expect(response.headers["Content-Disposition"]).to match(/attachment/) end end describe "checkout path" do render_views let(:permissions) { [:browse_repository] } let(:checkout_hash) do { "subversion" => { "enabled" => "1", "text" => "foo", "base_url" => "http://localhost" } } end before do allow(Setting).to receive(:repository_checkout_data).and_return(checkout_hash) get :show, params: { project_id: project.identifier, repo_path: "subversion_test" } end it "renders an empty warning view" do expected_path = "http://localhost/#{project.identifier}/subversion_test" expect(response.code).to eq("200") expect(response).to render_template partial: "repositories/_checkout_instructions" expect(response.body).to have_css("#repository-checkout-url[value='#{expected_path}']") end end end end describe "when not being logged in" do let(:anonymous) { build_stubbed(:anonymous) } before do login_as(anonymous) end describe "#show" do it "redirects to login while preserving the path" do params = { repo_path: "aDir/within/aDir", rev: "42", project_id: project.id } get(:show, params:) expect(response) .to redirect_to signin_path(back_url: show_revisions_path_project_repository_url(params)) end end end end