Chore: Added tests for inboxes_controller (#507)

2020-02-17 11:09:24 +01:00 · 2020-02-17 11:09:24 +01:00 · 44a3977f5c
commit 44a3977f5c
parent a2316d4d09
1 changed files with 90 additions and 0 deletions
--- a/spec/controllers/api/v1/inboxes_controller_spec.rb
+++ b/spec/controllers/api/v1/inboxes_controller_spec.rb
@ -0,0 +1,90 @@
+require 'rails_helper'
+
+RSpec.describe 'Inboxes API', type: :request do
+  let(:account) { create(:account) }
+
+  describe 'GET /api/v1/inboxes' do
+    context 'when it is an unauthenticated user' do
+      it 'returns unauthorized' do
+        get '/api/v1/inboxes'
+
+        expect(response).to have_http_status(:unauthorized)
+      end
+    end
+
+    context 'when it is an authenticated user' do
+      let(:agent) { create(:user, account: account, role: :agent) }
+      let(:admin) { create(:user, account: account, role: :administrator) }
+
+      before do
+        create(:inbox, account: account)
+        second_inbox = create(:inbox, account: account)
+        create(:inbox_member, user: agent, inbox: second_inbox)
+      end
+
+      it 'returns all inboxes of current_account as administrator' do
+        get '/api/v1/inboxes',
+            headers: admin.create_new_auth_token,
+            as: :json
+
+        expect(response).to have_http_status(:success)
+        expect(JSON.parse(response.body, symbolize_names: true)[:payload].size).to eq(2)
+      end
+
+      it 'returns only assigned inboxes of current_account as agent' do
+        get '/api/v1/inboxes',
+            headers: agent.create_new_auth_token,
+            as: :json
+
+        expect(response).to have_http_status(:success)
+        expect(JSON.parse(response.body, symbolize_names: true)[:payload].size).to eq(1)
+      end
+    end
+  end
+
+  describe 'DELETE /api/v1/inboxes/:id' do
+    let(:inbox) { create(:inbox, account: account) }
+
+    context 'when it is an unauthenticated user' do
+      it 'returns unauthorized' do
+        delete "/api/v1/inboxes/#{inbox.id}"
+
+        expect(response).to have_http_status(:unauthorized)
+      end
+    end
+
+    context 'when it is an authenticated user' do
+      let(:admin) { create(:user, account: account, role: :administrator) }
+
+      it 'deletes inbox' do
+        delete "/api/v1/inboxes/#{inbox.id}",
+               headers: admin.create_new_auth_token,
+               as: :json
+
+        expect(response).to have_http_status(:success)
+        expect(Inbox.count).to eq(0)
+      end
+
+      it 'is unable to delete inbox of another account' do
+        other_account = create(:account)
+        other_inbox = create(:inbox, account: other_account)
+
+        delete "/api/v1/inboxes/#{other_inbox.id}",
+               headers: admin.create_new_auth_token,
+               as: :json
+
+        expect(response).to have_http_status(:not_found)
+      end
+
+      it 'is unable to delete inbox as agent' do
+        agent = create(:user, account: account, role: :agent)
+
+        delete "/api/v1/inboxes/#{inbox.id}",
+               headers: agent.create_new_auth_token,
+               as: :json
+
+        expect(response).to have_http_status(:unauthorized)
+      end
+    end
+  end
+end