# frozen_string_literal: true # Redmine - project management software # Copyright (C) 2006-2019 Jean-Philippe Lang # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU General Public License # as published by the Free Software Foundation; either version 2 # of the License, or (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. require File.expand_path('../../test_helper', __FILE__) class MyControllerTest < Redmine::ControllerTest fixtures :users, :email_addresses, :user_preferences, :roles, :projects, :members, :member_roles, :issues, :issue_statuses, :trackers, :enumerations, :custom_fields, :auth_sources, :queries, :enabled_modules, :journals def setup @request.session[:user_id] = 2 end def test_index get :index assert_response :success assert_select 'h2', 'My page' end def test_page get :page assert_response :success assert_select 'h2', 'My page' end def test_page_with_timelog_block preferences = User.find(2).pref preferences[:my_page_layout] = {'top' => ['timelog']} preferences.save! with_issue = TimeEntry.create!(:user => User.find(2), :spent_on => Date.yesterday, :hours => 2.5, :activity_id => 10, :issue_id => 1) without_issue = TimeEntry.create!(:user => User.find(2), :spent_on => Date.yesterday, :hours => 3.5, :activity_id => 10, :project_id => 1) get :page assert_response :success assert_select "tr#time-entry-#{with_issue.id}" do assert_select 'td.subject a[href="/issues/1"]' assert_select 'td.hours', :text => '2.50' end assert_select "tr#time-entry-#{without_issue.id}" do assert_select 'td.hours', :text => '3.50' end end def test_page_with_assigned_issues_block_and_no_custom_settings preferences = User.find(2).pref preferences.my_page_layout = {'top' => ['issuesassignedtome']} preferences.my_page_settings = nil preferences.save! get :page assert_select '#block-issuesassignedtome' do assert_select 'table.issues' do assert_select 'th a[data-remote=true][data-method=post]', :text => 'Tracker' end assert_select '#issuesassignedtome-settings' do assert_select 'select[name=?]', 'settings[issuesassignedtome][columns][]' end end end def test_page_with_assigned_issues_block_and_custom_columns preferences = User.find(2).pref preferences.my_page_layout = {'top' => ['issuesassignedtome']} preferences.my_page_settings = {'issuesassignedtome' => {:columns => ['tracker', 'subject', 'due_date']}} preferences.save! get :page assert_select '#block-issuesassignedtome' do assert_select 'table.issues td.due_date' end end def test_page_with_assigned_issues_block_and_custom_sort preferences = User.find(2).pref preferences.my_page_layout = {'top' => ['issuesassignedtome']} preferences.my_page_settings = {'issuesassignedtome' => {:sort => 'due_date'}} preferences.save! get :page assert_select '#block-issuesassignedtome' do assert_select 'table.issues.sort-by-due-date' end end def test_page_with_issuequery_block_and_no_settings user = User.find(2) user.pref.my_page_layout = {'top' => ['issuequery']} user.pref.save! get :page assert_response :success assert_select '#block-issuequery' do assert_select 'h3', :text => 'Issues' assert_select 'select[name=?]', 'settings[issuequery][query_id]' do assert_select 'option[value="5"]', :text => 'Open issues by priority and tracker' end end end def test_page_with_issuequery_block_and_global_query user = User.find(2) query = IssueQuery.create!(:name => 'All issues', :user => user, :column_names => [:tracker, :subject, :status, :assigned_to]) user.pref.my_page_layout = {'top' => ['issuequery']} user.pref.my_page_settings = {'issuequery' => {:query_id => query.id}} user.pref.save! get :page assert_response :success assert_select '#block-issuequery' do assert_select 'a[href=?]', "/issues?query_id=#{query.id}" # assert number of columns (columns from query + id column + checkbox column) assert_select 'table.issues th', 7 # assert results limit assert_select 'table.issues tr.issue', 10 assert_select 'table.issues td.assigned_to' end end def test_page_with_issuequery_block_and_project_query user = User.find(2) query = IssueQuery.create!(:name => 'All issues', :project => Project.find(1), :user => user, :column_names => [:tracker, :subject, :status, :assigned_to]) user.pref.my_page_layout = {'top' => ['issuequery']} user.pref.my_page_settings = {'issuequery' => {:query_id => query.id}} user.pref.save! get :page assert_response :success assert_select '#block-issuequery' do assert_select 'a[href=?]', "/projects/ecookbook/issues?query_id=#{query.id}" # assert number of columns (columns from query + id column + checkbox column) assert_select 'table.issues th', 7 # assert results limit assert_select 'table.issues tr.issue', 10 assert_select 'table.issues td.assigned_to' end end def test_page_with_issuequery_block_and_query_should_display_custom_columns user = User.find(2) query = IssueQuery.create!(:name => 'All issues', :user => user, :column_names => [:tracker, :subject, :status, :assigned_to]) user.pref.my_page_layout = {'top' => ['issuequery']} user.pref.my_page_settings = {'issuequery' => {:query_id => query.id, :columns => [:subject, :due_date]}} user.pref.save! get :page assert_response :success assert_select '#block-issuequery' do # assert number of columns (columns from query + id column + checkbox column) assert_select 'table.issues th', 5 assert_select 'table.issues th', :text => 'Due date' end end def test_page_with_multiple_issuequery_blocks user = User.find(2) query1 = IssueQuery.create!(:name => 'All issues', :user => user, :column_names => [:tracker, :subject, :status, :assigned_to]) query2 = IssueQuery.create!(:name => 'Other issues', :user => user, :column_names => [:tracker, :subject, :priority]) user.pref.my_page_layout = {'top' => ['issuequery__1', 'issuequery']} user.pref.my_page_settings = { 'issuequery' => {:query_id => query1.id, :columns => [:subject, :due_date]}, 'issuequery__1' => {:query_id => query2.id} } user.pref.save! get :page assert_response :success assert_select '#block-issuequery' do assert_select 'h3', :text => /All issues/ assert_select 'table.issues th', :text => 'Due date' end assert_select '#block-issuequery__1' do assert_select 'h3', :text => /Other issues/ assert_select 'table.issues th', :text => 'Priority' end assert_select '#block-select' do assert_select 'option[value=?]:not([disabled])', 'issuequery__2', :text => 'Issues' end end def test_page_with_activity user = User.find(2) user.pref.my_page_layout = {'top' => ['activity']} user.pref.time_zone = 'UTC' user.pref.save! get :page assert_response :success assert_select 'div#block-activity' do assert_select 'h3' do assert_select 'a[href=?]', activity_path(from: User.current.today, user_id: user.id), :text => 'Activity' end assert_select 'div#activity' do assert_select 'dt', 10 end end end def test_page_with_updated_issues_block preferences = User.find(2).pref preferences.my_page_layout = {'top' => ['issuesupdatedbyme']} preferences.my_page_settings = {'issuesupdatedbyme' => {}} preferences.save! project = Project.find(3) project.close get :page assert_response :success assert_select '#block-issuesupdatedbyme' do report_url = CGI.unescape(css_select('h3 a').first.attr('href')) assert_match 'f[]=project.status', report_url assert_match 'v[project.status][]=1', report_url assert_match 'f[]=updated_by', report_url assert_match 'v[updated_by][]=me', report_url assert_select 'table.issues tbody tr', 2 assert_select 'table.issues tbody tr[id=?]', 'issue-1', 1, :title => 'Cannot print recipes' assert_select 'table.issues tbody tr[id=?]', 'issue-14', 0 end end def test_page_with_all_blocks blocks = Redmine::MyPage.blocks.keys preferences = User.find(2).pref preferences[:my_page_layout] = {'top' => blocks} preferences.save! get :page assert_response :success assert_select 'div.mypage-box', blocks.size end def test_page_with_assigned_issues_block_should_not_show_issues_from_closed_projects preferences = User.find(2).pref preferences.my_page_layout = {'top' => ['issuesassignedtome']} preferences.my_page_settings = {'issuesassignedtome' => {}} preferences.save! issue = Issue.find(1) issue.assigned_to = User.find(2) issue.save! project = Project.find(2) project.close project.save get :page assert_response :success assert_select '#block-issuesassignedtome table.issues tbody' do report_url = css_select('h3 a').map {|e| e.attr('href')}.first assert_match 'f%5B%5D=project.status', report_url assert_match 'v%5Bproject.status%5D%5B%5D=1', report_url assert_select 'tr', 1 assert_select 'tr[id=?]', 'issue-1', 1, :title => 'Cannot print recipes' assert_select 'tr[id=?]', 'issue-4', 0 end end def test_page_with_reported_issues_block_should_not_show_issues_from_closed_projects preferences = User.find(2).pref preferences.my_page_layout = {'top' => ['issuesreportedbyme']} preferences.my_page_settings = {'issuesreportedbyme' => {}} preferences.save! issue = Issue.find(1) issue.assigned_to = User.find(2) issue.save! project = Project.find(2) project.close project.save get :page assert_response :success assert_select '#block-issuesreportedbyme' do report_url = css_select('h3 a').map {|e| e.attr('href')}.first assert_match 'f%5B%5D=project.status', report_url assert_match 'v%5Bproject.status%5D%5B%5D=1', report_url assert_select 'table.issues tbody tr', 10 assert_select 'table.issues tbody tr[id=?]', 'issue-1', 1, :title => 'Cannot print recipes' assert_select 'table.issues tbody tr[id=?]', 'issue-4', 0 end end def test_page_with_watched_issues_block_should_not_show_issues_from_closed_projects preferences = User.find(2).pref preferences.my_page_layout = {'top' => ['issueswatched']} preferences.my_page_settings = {'issueswatched' => {}} preferences.save! issue = Issue.find(1) issue.watcher_user_ids = ['1', '2'] issue.save! issue2 = Issue.find(4) issue2.watcher_user_ids = ['2'] issue2.save! project = Project.find(2) project.close project.save get :page assert_response :success assert_select '#block-issueswatched table.issues tbody' do report_url = css_select('h3 a').map {|e| e.attr('href')}.first assert_match 'f%5B%5D=project.status', report_url assert_match 'v%5Bproject.status%5D%5B%5D=1', report_url assert_select 'tr', 1 assert_select 'tr[id=?]', 'issue-1', 1, :title => 'Cannot print recipes' assert_select 'tr[id=?]', 'issue-4', 0 end end def test_my_account_should_show_editable_custom_fields get :account assert_response :success assert_select 'input[name=?]', 'user[custom_field_values][4]' end def test_my_account_should_not_show_non_editable_custom_fields UserCustomField.find(4).update_attribute :editable, false get :account assert_response :success assert_select 'input[name=?]', 'user[custom_field_values][4]', 0 end def test_my_account_should_show_language_select get :account assert_response :success assert_select 'select[name=?]', 'user[language]' end def test_my_account_with_avatar_enabled_should_link_to_edit_avatar with_settings :gravatar_enabled => '1' do Redmine::Configuration.with 'avatar_server_url' => 'https://gravatar.com' do get :account assert_response :success assert_select 'a[href=?] img.gravatar', 'https://gravatar.com' end end end def test_my_account_should_not_show_language_select_with_force_default_language_for_loggedin with_settings :force_default_language_for_loggedin => '1' do get :account assert_response :success assert_select 'select[name=?]', 'user[language]', 0 end end def test_update_account put :account, :params => { :user => { :firstname => "Joe", :login => "root", :admin => 1, :group_ids => ['10'], :custom_field_values => { "4" => "0100562500" } } } assert_redirected_to '/my/account' user = User.find(2) assert_equal "Joe", user.firstname assert_equal "jsmith", user.login assert_equal "0100562500", user.custom_value_for(4).value # ignored assert !user.admin? assert user.groups.empty? end def test_update_account_should_send_security_notification ActionMailer::Base.deliveries.clear put :account, :params => { :user => { :mail => 'foobar@example.com' } } assert_not_nil (mail = ActionMailer::Base.deliveries.last) assert_mail_body_match '0.0.0.0', mail assert_mail_body_match I18n.t(:mail_body_security_notification_change_to, field: I18n.t(:field_mail), value: 'foobar@example.com'), mail assert_select_email do assert_select 'a[href^=?]', 'http://localhost:3000/my/account', :text => 'My account' end # The old email address should be notified about the change for security purposes assert [mail.bcc, mail.cc].flatten.include?(User.find(2).mail) assert [mail.bcc, mail.cc].flatten.include?('foobar@example.com') end def test_my_account_should_show_destroy_link get :account assert_select 'a[href="/my/account/destroy"]' end def test_get_destroy_should_display_the_destroy_confirmation get :destroy assert_response :success assert_select 'form[action="/my/account/destroy"]' do assert_select 'input[name=confirm]' end end def test_post_destroy_without_confirmation_should_not_destroy_account assert_no_difference 'User.count' do post :destroy end assert_response :success end def test_post_destroy_without_confirmation_should_destroy_account assert_difference 'User.count', -1 do post :destroy, :params => { :confirm => '1' } end assert_redirected_to '/' assert_match /deleted/i, flash[:notice] end def test_post_destroy_with_unsubscribe_not_allowed_should_not_destroy_account User.any_instance.stubs(:own_account_deletable?).returns(false) assert_no_difference 'User.count' do post :destroy, :params => { :confirm => '1' } end assert_redirected_to '/my/account' end def test_change_password get :password assert_response :success assert_select 'input[type=password][name=password]' assert_select 'input[type=password][name=new_password]' assert_select 'input[type=password][name=new_password_confirmation]' end def test_update_password post :password, :params => { :password => 'jsmith', :new_password => 'secret123', :new_password_confirmation => 'secret123' } assert_redirected_to '/my/account' assert User.try_to_login('jsmith', 'secret123') end def test_update_password_with_non_matching_confirmation post :password, :params => { :password => 'jsmith', :new_password => 'secret123', :new_password_confirmation => 'secret1234' } assert_response :success assert_select_error /Password doesn.*t match confirmation/ assert User.try_to_login('jsmith', 'jsmith') end def test_update_password_with_wrong_password # wrong password post :password, :params => { :password => 'wrongpassword', :new_password => 'secret123', :new_password_confirmation => 'secret123' } assert_response :success assert_equal 'Wrong password', flash[:error] assert User.try_to_login('jsmith', 'jsmith') end def test_change_password_should_redirect_if_user_cannot_change_its_password User.find(2).update_attribute(:auth_source_id, 1) get :password assert_not_nil flash[:error] assert_redirected_to '/my/account' end def test_update_password_should_send_security_notification ActionMailer::Base.deliveries.clear post :password, :params => { :password => 'jsmith', :new_password => 'secret123', :new_password_confirmation => 'secret123' } assert_not_nil (mail = ActionMailer::Base.deliveries.last) assert_mail_body_no_match 'secret123', mail # just to be sure: pw should never be sent! assert_select_email do assert_select 'a[href^=?]', 'http://localhost:3000/my/password', :text => 'Change password' end end def test_update_page_with_blank_preferences user = User.generate!(:language => 'en') @request.session[:user_id] = user.id post :update_page, :params => { :settings => { 'issuesassignedtome' => { 'columns' => ['subject', 'due_date']} } }, :xhr => true assert_response :success assert_include '$("#block-issuesassignedtome").replaceWith(', response.body assert_include 'Due date', response.body assert_equal({:columns => ['subject', 'due_date']}, user.reload.pref.my_page_settings('issuesassignedtome')) end def test_add_block post :add_block, :params => { :block => 'issueswatched' } assert_redirected_to '/my/page' assert User.find(2).pref[:my_page_layout]['top'].include?('issueswatched') end def test_add_block_xhr post :add_block, :params => { :block => 'issueswatched' }, :xhr => true assert_response :success assert_include 'issueswatched', User.find(2).pref[:my_page_layout]['top'] end def test_add_invalid_block_should_error post :add_block, :params => { :block => 'invalid' } assert_response 422 end def test_remove_block post :remove_block, :params => { :block => 'issuesassignedtome' } assert_redirected_to '/my/page' assert !User.find(2).pref[:my_page_layout].values.flatten.include?('issuesassignedtome') end def test_remove_block_xhr post :remove_block, :params => { :block => 'issuesassignedtome' }, :xhr => true assert_response :success assert_include '$("#block-issuesassignedtome").remove();', response.body assert !User.find(2).pref[:my_page_layout].values.flatten.include?('issuesassignedtome') end def test_order_blocks pref = User.find(2).pref pref.my_page_layout = {'left' => ['news', 'calendar','documents']} pref.save! post :order_blocks, :params => { :group => 'left', :blocks => ['documents', 'calendar', 'news'] }, :xhr => true assert_response :success assert_equal ['documents', 'calendar', 'news'], User.find(2).pref.my_page_layout['left'] end def test_move_block pref = User.find(2).pref pref.my_page_layout = {'left' => ['news','documents'], 'right' => ['calendar']} pref.save! post :order_blocks, :params => { :group => 'left', :blocks => ['news', 'calendar', 'documents'] }, :xhr => true assert_response :success assert_equal({'left' => ['news', 'calendar', 'documents'], 'right' => []}, User.find(2).pref.my_page_layout) end def test_reset_rss_key_with_existing_key @previous_token_value = User.find(2).rss_key # Will generate one if it's missing post :reset_rss_key assert_not_equal @previous_token_value, User.find(2).rss_key assert User.find(2).rss_token assert_match /reset/, flash[:notice] assert_redirected_to '/my/account' end def test_reset_rss_key_without_existing_key Token.delete_all assert_nil User.find(2).rss_token post :reset_rss_key assert User.find(2).rss_token assert_match /reset/, flash[:notice] assert_redirected_to '/my/account' end def test_show_api_key get :show_api_key assert_response :success assert_select 'pre', User.find(2).api_key end def test_reset_api_key_with_existing_key @previous_token_value = User.find(2).api_key # Will generate one if it's missing post :reset_api_key assert_not_equal @previous_token_value, User.find(2).api_key assert User.find(2).api_token assert_match /reset/, flash[:notice] assert_redirected_to '/my/account' end def test_reset_api_key_without_existing_key assert_nil User.find(2).api_token post :reset_api_key assert User.find(2).api_token assert_match /reset/, flash[:notice] assert_redirected_to '/my/account' end end