allow account admins to use brand configs

fixes CNVS-21826 test plan - as an account admin you should be able to use brand configs Change-Id: I907e856a9b675681c5d1bc099cec6b7c3cab7b34 Reviewed-on: https://gerrit.instructure.com/58521 Tested-by: Jenkins QA-Review: Jeremy Putnam <jeremyp@instructure.com> Reviewed-by: Cody Cutrer <cody@instructure.com> Product-Review: Rob Orton <rob@instructure.com>
2015-07-14 10:43:57 -06:00 · 2015-07-14 10:43:57 -06:00 · 594a8693a2
parent 3c885da96e
commit 594a8693a2
3 changed files with 49 additions and 4 deletions
--- a/app/controllers/brand_configs_controller.rb
+++ b/app/controllers/brand_configs_controller.rb
@ -1,6 +1,6 @@
 class BrandConfigsController < ApplicationController
  before_filter :require_user
-  before_filter :require_manage_site_settings, except: [:destroy]
+  before_filter :require_manage_account_settings, except: [:destroy]

  def new
    @page_title = join_title(t('Theme Editor'), @domain_root_account.name)
@ -46,8 +46,10 @@ class BrandConfigsController < ApplicationController

  protected

-  def require_manage_site_settings
-    return false unless authorized_action(@domain_root_account, @current_user, :manage_site_settings) && use_new_styles?
+  def require_manage_account_settings
+    return false unless authorized_action(@domain_root_account,
+                                          @current_user,
+                                          :manage_account_settings) && use_new_styles?
  end

  def create_brand_config(variables)
--- a/app/views/shared/_accounts_right_side_shared.html.erb
+++ b/app/views/shared/_accounts_right_side_shared.html.erb
@ -10,7 +10,7 @@
  </div>
 <% end %>

-<% if @account == @domain_root_account && use_new_styles? && can_do(@account, @current_user, :manage_site_settings) %>
+<% if @account == @domain_root_account && use_new_styles? && can_do(@account, @current_user, :manage_account_settings) %>
  <div class="rs-margin-lr">
    <%= link_to t("Open Theme Editor"), brand_configs_new_path, :class => 'btn button-sidebar-wide' %>
  </div>
--- a/spec/controllers/brand_configs_controller_spec.rb
+++ b/spec/controllers/brand_configs_controller_spec.rb
@ -0,0 +1,43 @@
+#
+# Copyright (C) 2015 Instructure, Inc.
+#
+# This file is part of Canvas.
+#
+# Canvas is free software: you can redistribute it and/or modify it under
+# the terms of the GNU Affero General Public License as published by the Free
+# Software Foundation, version 3 of the License.
+#
+# Canvas is distributed in the hope that it will be useful, but WITHOUT ANY
+# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
+# A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
+# details.
+#
+# You should have received a copy of the GNU Affero General Public License along
+# with this program. If not, see <http://www.gnu.org/licenses/>.
+#
+
+require File.expand_path(File.dirname(__FILE__) + '/../spec_helper')
+
+describe BrandConfigsController do
+  before :each do
+    @account = Account.default
+    @account.enable_feature!(:use_new_styles)
+    @bc = BrandConfig.create(variables: {"ic-brand-primary" => "red"})
+  end
+
+  describe '#new' do
+    it "should allow authorized admin to create" do
+      admin = account_admin_user(account: @account)
+      user_session(admin)
+      post 'new', {brand_config: @bc}
+      assert_status(200)
+    end
+
+    it "should not allow non admin access" do
+      user = user_with_pseudonym(active_all: true)
+      user_session(user)
+      post 'new', {brand_config: @bc}
+      assert_status(401)
+    end
+  end
+end