You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
46 lines
1.6 KiB
46 lines
1.6 KiB
require 'spec_helper' |
|
|
|
# needs "rake db:test:clone" for the "hosts" part |
|
|
|
describe Ability do |
|
include_context "data" |
|
|
|
context "basic" do |
|
it "allows me to manage my domains and their records, and my hosts" do |
|
ability.should be_able_to(:manage, domain) |
|
ability.should be_able_to(:manage, a_record) |
|
ability.should be_able_to(:manage, soa_record) |
|
ability.should_not be_able_to(:delete, soa_record) # SOA deleted only via parent |
|
ability.should be_able_to(:manage, host_a_record) |
|
end |
|
|
|
it "denies other user to manage my domains and their records, and my hosts" do |
|
other_user_ability.should_not be_able_to(:manage, domain) |
|
other_user_ability.should_not be_able_to(:manage, a_record) |
|
other_user_ability.should_not be_able_to(:manage, soa_record) |
|
other_user_ability.should_not be_able_to(:manage, host_a_record) |
|
end |
|
|
|
it "allows admin to manage other user's hosts" do |
|
admin_ability.should be_able_to(:manage, host_a_record) |
|
end |
|
end |
|
|
|
context "permission" do |
|
it "allows other user to manage user's domains and records, if permitted" do |
|
permission # ensure permission to domain |
|
other_user_ability.should be_able_to(:manage, domain) |
|
other_user_ability.should be_able_to(:manage, a_record) |
|
other_user_ability.should be_able_to(:manage, soa_record) |
|
end |
|
|
|
it "allows me to manage my domain's permissions" do |
|
ability.should be_able_to(:manage, permission) |
|
end |
|
|
|
it "denies other user to manage my domain's permissions" do |
|
other_user_ability.should_not be_able_to(:manage, permission) |
|
end |
|
end |
|
|
|
end
|
|
|