ylqjgm
/
canvas-lms
mirror of https://github.com/instructure/canvas-lms.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
canvas-lms/spec/apis/v1/collaborations_api_spec.rb

241 lines
8.6 KiB
Ruby
Raw Blame History

# frozen_string_literal: true
#
# Copyright (C) 2012 Instructure, Inc.
#
# This file is part of Canvas.
#
# Canvas is free software: you can redistribute it and/or modify it under
# the terms of the GNU Affero General Public License as published by the Free
# Software Foundation, version 3 of the License.
#
# Canvas is distributed in the hope that it will be useful, but WITHOUT ANY
# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
# A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
# details.
#
# You should have received a copy of the GNU Affero General Public License along
# with this program. If not, see <http://www.gnu.org/licenses/>.
#
require File.expand_path(File.dirname(__FILE__) + '/../api_spec_helper')
describe CollaborationsController, type: :request do
before :once do
PluginSetting.new(:name => 'etherpad', :settings => {}).save!
course_with_teacher(:active_all => true)
end
context '/api/v1/course/:course_id/collaborations' do
before :once do
group_model(:context => @course)
@student = user_with_pseudonym(:active_all => true)
@course.enroll_student(@student).accept!
@course_collaboration = collaboration_model(
:user => @student,
:context => @course,
:type => "ExternalToolCollaboration"
)
@group_collaboration = collaboration_model(
:user => @student,
:context => @group,
:type => "ExternalToolCollaboration"
)
@user = @student
end
let(:url) { "/api/v1/courses/#{@course.id}/collaborations" }
let(:url_options) do
{
:controller => 'collaborations',
:action => 'api_index',
:course_id => @course.id,
:format => 'json'
}
end
let(:group_url) { "/api/v1/groups/#{@group.id}/collaborations" }
let(:group_url_options) do
{
:controller => 'collaborations',
:action => 'api_index',
:group_id => @group.id,
:format => 'json'
}
end
it 'requires authorization' do
user_factory
raw_api_call(:get, url, url_options)
expect(response.code).to eq '401'
end
it 'is unauthorized when trying to access a courses collaboration when they are not a member of the course' do
user = user_with_pseudonym(:active_all => true)
raw_api_call(:get, url, url_options)
expect(response.code).to eq '401'
end
it 'is unauthorized when trying to access a groups collaborations they are not a member of' do
raw_api_call(:get, group_url, group_url_options)
expect(response.code).to eq '401'
end
it 'doesnt return course collaborations for which the user is not a collaborator on' do
user = user_with_pseudonym(:active_all => true)
@course.enroll_student(user).accept!
json = api_call(:get, url, url_options)
expect(json.count).to eq 0
end
it 'only returns collaborations of type ExternalToolCollaboration' do
json = api_call(:get, url, url_options)
expect(json.count).to eq 1
expect(json[0]['type']).to eq "ExternalToolCollaboration"
end
it 'returns the creating users name in the response' do
json = api_call(:get, url, url_options)
expect(json.count).to eq 1
expect(json[0]['user_name']).to eq @student.name
end
it 'returns collaborations the user is a collaborator on' do
user = user_with_pseudonym(:active_all => true)
@course.enroll_student(user).accept!
@course_collaboration.update_members([user])
json = api_call(:get, url, url_options)
expect(json.count).to eq 1
end
it 'returns course collaborations for which a user has access to through their group membership' do
user = user_with_pseudonym(:active_all => true)
@course.enroll_student(user).accept!
gc = group_category
group = gc.groups.create!(:context => @course)
group.add_user(@user, 'accepted')
@course_collaboration.update_members([], [group.id])
json = api_call(:get, url, url_options)
expect(json.count).to eq 1
end
it 'returns group collaborations for which a user has access to through their group membership' do
@group.add_user(@user)
json = api_call(:get, group_url, group_url_options)
expect(json.count).to eq 1
end
end
context '/api/v1/collaborations/:id/members' do
before :once do
@members = (1..5).map do
user = user_with_pseudonym(:active_all => true)
@course.enroll_student(user).accept!
user
end
collaboration_model(:user => @teacher, :context => @course)
@user = @teacher
@collaboration.update_members(@members)
end
let(:url) { "/api/v1/collaborations/#{@collaboration.to_param}/members.json" }
let(:url_options) {
{ :controller => 'collaborations',
:action => 'members',
:id => @collaboration.to_param,
:format => 'json' }
}
describe 'a group member' do
it 'sees group members' do
json = api_call(:get, url, url_options)
expect(json.count).to eq 6
end
it 'receives a paginated response' do
json = api_call(:get, "#{url}?per_page=1", url_options.merge(:per_page => '1'))
expect(json.count).to eq 1
end
it 'is formatted by collaborator_json' do
json = api_call(:get, url, url_options)
expect(json.first.keys.sort).to eq %w{collaborator_id id name type}
end
it 'includes groups' do
group_model(:context => @course)
Collaborator.create!(:user => nil, :group => @group, :collaboration => @collaboration)
users, groups = api_call(:get, url, url_options).partition { |c| c['type'] == 'user' }
expect(users.length).to eq 6
expect(groups.length).to eq 1
expect(groups.first['collaborator_id']).to eq @group.id
end
end
describe 'a non-group member' do
before(:each) do
user_factory
end
it 'receives a 401' do
raw_api_call(:get, url, url_options)
expect(response.code).to eq '401'
end
end
end
context '/api/v1/courses/:course_id/potential_collaborators' do
before :once do
collaboration_model(:user => @teacher, :context => @course)
end
it 'requires :read_roster rights' do
user_factory
api_call(:get, "/api/v1/courses/#{@course.id}/potential_collaborators",
{ :controller => 'collaborations', :action => 'potential_collaborators',
:format => 'json', :course_id => @course.to_param },
{}, {}, expected_status: 401)
end
it 'returns course members for course collaborations' do
json = api_call(:get, "/api/v1/courses/#{@course.id}/potential_collaborators",
{ :controller => 'collaborations', :action => 'potential_collaborators',
:format => 'json', :course_id => @course.to_param })
expect(json.map { |user| user['id'] }).to match_array(@course.users.pluck(:id))
end
it 'returns course members for a user who has limit_privileges_to_course_section enabled' do
@course.enroll_student(@user).accept!
second_section = @course.course_sections.create!(:name => 'Section 2')
student2 = user_with_pseudonym(:active_all => true)
ta = user_factory(:name => 'Bobby Tables')
@course.enroll_user(ta, 'TaEnrollment', :section => second_section, limit_privileges_to_course_section: true)
@course.enroll_user(student2, 'StudentEnrollment', :section => second_section)
json = api_call(:get, "/api/v1/courses/#{@course.id}/potential_collaborators",
{ :controller => 'collaborations', :action => 'potential_collaborators',
:format => 'json', :course_id => @course.to_param })
users_map = json.map { |user| user['id'] }
expect(users_map.count).to eq 2
expect(users_map).to match_array(second_section.users.pluck(:id))
end
end
context '/api/v1/groups/:group_id/potential_collaborators' do
it 'returns group members plus course admins for group collaborations' do
group_model(:context => @course)
user_with_pseudonym
@course.enroll_student(@user).accept!
@group.add_user(@user)
gc = collaboration_model(:user => @user, :context => @group)
json = api_call(:get, "/api/v1/groups/#{@group.id}/potential_collaborators",
{ :controller => 'collaborations', :action => 'potential_collaborators',
:format => 'json', :group_id => @group.to_param })
expect(json.map { |user| user['id'] }).to match_array(@course.admins.pluck(:id) + @group.users.pluck(:id))
end
end
end
Reference in New Issue View Git Blame Copy Permalink