github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-06-25 11:01:34 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
Files
27227c9ece20ebf902550758e7cec2ef52ec6b98
discourse/spec/requests/reviewable_notes_controller_spec.rb
Gary Pendergast 599404de31 DEV: Add a ReviewableNote model, and tie it into the Reviewable model. (#33047) 
As part of the review queue refresh, we'll be adding the ability for moderators to make notes on individual reviewable items. As a first step, this change adds the new model and associated backend code.
2025-06-04 09:33:02 +10:00

266 lines
7.5 KiB
Ruby
Raw Blame History

# frozen_string_literal: true
RSpec.describe ReviewableNotesController do
fab!(:admin)
fab!(:moderator)
fab!(:user)
fab!(:reviewable) { Fabricate(:reviewable_flagged_post) }
describe "#create" do
context "when user is staff" do
before { sign_in(admin) }
it "creates a new reviewable note successfully" do
post "/reviewables/#{reviewable.id}/notes.json",
params: {
reviewable_note: {
content: "This is a test note",
},
}
expect(response.status).to eq(200)
json = response.parsed_body
expect(json["content"]).to eq("This is a test note")
expect(json["user"]["id"]).to eq(admin.id)
expect(json["user"]["username"]).to eq(admin.username)
# Verify note was actually created in database
note = ReviewableNote.last
expect(note.content).to eq("This is a test note")
expect(note.user).to eq(admin)
expect(note.reviewable).to eq(reviewable)
end
it "creates a new reviewable note successfully as a moderator" do
sign_in(moderator)
post "/reviewables/#{reviewable.id}/notes.json",
params: {
reviewable_note: {
content: "Moderator note",
},
}
expect(response.status).to eq(200)
json = response.parsed_body
expect(json["user"]["id"]).to eq(moderator.id)
end
it "returns validation errors for invalid content" do
post "/reviewables/#{reviewable.id}/notes.json",
params: {
reviewable_note: {
content: "",
},
}
expect(response.status).to eq(422)
json = response.parsed_body
expect(json["errors"]).to include("Content can't be blank")
end
it "returns validation errors for content that's too long" do
long_content = "a" * (ReviewableNote::MAX_CONTENT_LENGTH + 1)
post "/reviewables/#{reviewable.id}/notes.json",
params: {
reviewable_note: {
content: long_content,
},
}
expect(response.status).to eq(422)
json = response.parsed_body
expect(json["errors"]).to include(
"Content is too long (maximum is #{ReviewableNote::MAX_CONTENT_LENGTH} characters)",
)
end
it "trims whitespace from content" do
post "/reviewables/#{reviewable.id}/notes.json",
params: {
reviewable_note: {
content: " ",
},
}
expect(response.status).to eq(422)
json = response.parsed_body
expect(json["errors"]).to include("Content can't be blank")
end
it "handles missing reviewable" do
post "/reviewables/999999/notes.json", params: { reviewable_note: { content: "Test note" } }
expect(response.status).to eq(404)
end
it "handles malformed parameters" do
post "/reviewables/#{reviewable.id}/notes.json",
params: {
wrong_param: {
content: "Test note",
},
}
expect(response.status).to eq(400)
end
context "with HTML content" do
it "preserves HTML content as-is" do
html_content = "<p>This is <strong>bold</strong> text</p>"
post "/reviewables/#{reviewable.id}/notes.json",
params: {
reviewable_note: {
content: html_content,
},
}
expect(response.status).to eq(200)
json = response.parsed_body
expect(json["content"]).to eq(html_content)
end
end
context "with Unicode content" do
it "handles Unicode characters correctly" do
unicode_content = "Test with emojis 🎉 and accents café"
post "/reviewables/#{reviewable.id}/notes.json",
params: {
reviewable_note: {
content: unicode_content,
},
}
expect(response.status).to eq(200)
json = response.parsed_body
expect(json["content"]).to eq(unicode_content)
end
end
end
context "when user is not staff" do
before { sign_in(user) }
it "returns 404" do
post "/reviewables/#{reviewable.id}/notes.json",
params: {
reviewable_note: {
content: "This should fail",
},
}
expect(response.status).to eq(404)
end
end
context "when user is not logged in" do
it "returns 404" do
post "/reviewables/#{reviewable.id}/notes.json",
params: {
reviewable_note: {
content: "This should fail",
},
}
expect(response.status).to eq(404)
end
end
end
describe "#destroy" do
fab!(:note) { Fabricate(:reviewable_note, reviewable: reviewable, user: admin) }
context "when user is the note author" do
before { sign_in(admin) }
it "deletes the note successfully" do
expect { delete "/reviewables/#{reviewable.id}/notes/#{note.id}.json" }.to change {
ReviewableNote.where(user: admin).count
}.by(-1)
expect(response.status).to eq(200)
json = response.parsed_body
expect(json["success"]).to eq("OK")
end
it "returns 404 for non-existent note" do
delete "/reviewables/#{reviewable.id}/notes/999999.json"
expect(response.status).to eq(404)
end
end
context "when user is admin but not the note author" do
fab!(:moderator_note) { Fabricate(:reviewable_note, reviewable: reviewable, user: moderator) }
before { sign_in(admin) }
it "allows admin to delete any note" do
expect {
delete "/reviewables/#{reviewable.id}/notes/#{moderator_note.id}.json"
}.to change { ReviewableNote.count }.by(-1)
expect(response.status).to eq(200)
end
end
context "when user is moderator but not admin and not note author" do
fab!(:admin_note) { Fabricate(:reviewable_note, reviewable: reviewable, user: admin) }
before { sign_in(moderator) }
it "returns 403 forbidden" do
delete "/reviewables/#{reviewable.id}/notes/#{admin_note.id}.json"
expect(response.status).to eq(403)
end
end
context "when user is not staff" do
before { sign_in(user) }
it "returns 404" do
delete "/reviewables/#{reviewable.id}/notes/#{note.id}.json"
expect(response.status).to eq(404)
end
end
context "when user is not logged in" do
it "returns 404" do
delete "/reviewables/#{reviewable.id}/notes/#{note.id}.json"
expect(response.status).to eq(404)
end
end
context "when reviewable doesn't exist" do
before { sign_in(admin) }
it "returns 404" do
delete "/reviewables/999999/notes/#{note.id}.json"
expect(response.status).to eq(404)
end
end
context "when note belongs to different reviewable" do
fab!(:other_reviewable) { Fabricate(:reviewable_flagged_post) }
fab!(:other_note) { Fabricate(:reviewable_note, reviewable: other_reviewable, user: admin) }
before { sign_in(admin) }
it "returns 404" do
delete "/reviewables/#{reviewable.id}/notes/#{other_note.id}.json"
expect(response.status).to eq(404)
end
end
end
end
Reference in New Issue View Git Blame Copy Permalink