PageRenderTime 42ms CodeModel.GetById 20ms RepoModel.GetById 1ms app.codeStats 0ms

/spec/requests/api/runners_spec.rb

https://gitlab.com/NestorTejero/gitlab-ce
Ruby | 464 lines | 409 code | 54 blank | 1 comment | 3 complexity | 7ce01bb54514c1eac5bcb5375ae4a214 MD5 | raw file
    

  1. require 'spec_helper'
    2. 

  2. 

  3. describe API::Runners, api: true  do
    4. 

  4.   include ApiHelpers
    5. 

  5. 

  6.   let(:admin) { create(:user, :admin) }
    7. 

  7.   let(:user) { create(:user) }
    8. 

  8.   let(:user2) { create(:user) }
    9. 

  9. 

  10.   let(:project) { create(:project, creator_id: user.id) }
    11. 

  11.   let(:project2) { create(:project, creator_id: user.id) }
    12. 

  12. 

  13.   let!(:shared_runner) { create(:ci_runner, :shared) }
    14. 

  14.   let!(:unused_specific_runner) { create(:ci_runner) }
    15. 

  15. 

  16.   let!(:specific_runner) do
    17. 

  17.     create(:ci_runner).tap do |runner|
    18. 

  18.       create(:ci_runner_project, runner: runner, project: project)
    19. 

  19.     end
    20. 

  20.   end
    21. 

  21. 

  22.   let!(:two_projects_runner) do
    23. 

  23.     create(:ci_runner).tap do |runner|
    24. 

  24.       create(:ci_runner_project, runner: runner, project: project)
    25. 

  25.       create(:ci_runner_project, runner: runner, project: project2)
    26. 

  26.     end
    27. 

  27.   end
    28. 

  28. 

  29.   before do
    30. 

  30.     # Set project access for users
    31. 

  31.     create(:project_member, :master, user: user, project: project)
    32. 

  32.     create(:project_member, :master, user: user, project: project2)
    33. 

  33.     create(:project_member, :reporter, user: user2, project: project)
    34. 

  34.   end
    35. 

  35. 

  36.   describe 'GET /runners' do
    37. 

  37.     context 'authorized user' do
    38. 

  38.       it 'should return user available runners' do
    39. 

  39.         get api('/runners', user)
    40. 

  40.         shared = json_response.any?{ |r| r['is_shared'] }
    41. 

  41. 

  42.         expect(response.status).to eq(200)
    43. 

  43.         expect(json_response).to be_an Array
    44. 

  44.         expect(shared).to be_falsey
    45. 

  45.       end
    46. 

  46. 

  47.       it 'should filter runners by scope' do
    48. 

  48.         get api('/runners?scope=active', user)
    49. 

  49.         shared = json_response.any?{ |r| r['is_shared'] }
    50. 

  50. 

  51.         expect(response.status).to eq(200)
    52. 

  52.         expect(json_response).to be_an Array
    53. 

  53.         expect(shared).to be_falsey
    54. 

  54.       end
    55. 

  55. 

  56.       it 'should avoid filtering if scope is invalid' do
    57. 

  57.         get api('/runners?scope=unknown', user)
    58. 

  58.         expect(response.status).to eq(400)
    59. 

  59.       end
    60. 

  60.     end
    61. 

  61. 

  62.     context 'unauthorized user' do
    63. 

  63.       it 'should not return runners' do
    64. 

  64.         get api('/runners')
    65. 

  65. 

  66.         expect(response.status).to eq(401)
    67. 

  67.       end
    68. 

  68.     end
    69. 

  69.   end
    70. 

  70. 

  71.   describe 'GET /runners/all' do
    72. 

  72.     context 'authorized user' do
    73. 

  73.       context 'with admin privileges' do
    74. 

  74.         it 'should return all runners' do
    75. 

  75.           get api('/runners/all', admin)
    76. 

  76.           shared = json_response.any?{ |r| r['is_shared'] }
    77. 

  77. 

  78.           expect(response.status).to eq(200)
    79. 

  79.           expect(json_response).to be_an Array
    80. 

  80.           expect(shared).to be_truthy
    81. 

  81.         end
    82. 

  82.       end
    83. 

  83. 

  84.       context 'without admin privileges' do
    85. 

  85.         it 'should not return runners list' do
    86. 

  86.           get api('/runners/all', user)
    87. 

  87. 

  88.           expect(response.status).to eq(403)
    89. 

  89.         end
    90. 

  90.       end
    91. 

  91. 

  92.       it 'should filter runners by scope' do
    93. 

  93.         get api('/runners/all?scope=specific', admin)
    94. 

  94.         shared = json_response.any?{ |r| r['is_shared'] }
    95. 

  95. 

  96.         expect(response.status).to eq(200)
    97. 

  97.         expect(json_response).to be_an Array
    98. 

  98.         expect(shared).to be_falsey
    99. 

  99.       end
    100. 

  100. 

  101.       it 'should avoid filtering if scope is invalid' do
    102. 

  102.         get api('/runners?scope=unknown', admin)
    103. 

  103.         expect(response.status).to eq(400)
    104. 

  104.       end
    105. 

  105.     end
    106. 

  106. 

  107.     context 'unauthorized user' do
    108. 

  108.       it 'should not return runners' do
    109. 

  109.         get api('/runners')
    110. 

  110. 

  111.         expect(response.status).to eq(401)
    112. 

  112.       end
    113. 

  113.     end
    114. 

  114.   end
    115. 

  115. 

  116.   describe 'GET /runners/:id' do
    117. 

  117.     context 'admin user' do
    118. 

  118.       context 'when runner is shared' do
    119. 

  119.         it "should return runner's details" do
    120. 

  120.           get api("/runners/#{shared_runner.id}", admin)
    121. 

  121. 

  122.           expect(response.status).to eq(200)
    123. 

  123.           expect(json_response['description']).to eq(shared_runner.description)
    124. 

  124.         end
    125. 

  125.       end
    126. 

  126. 

  127.       context 'when runner is not shared' do
    128. 

  128.         it "should return runner's details" do
    129. 

  129.           get api("/runners/#{specific_runner.id}", admin)
    130. 

  130. 

  131.           expect(response.status).to eq(200)
    132. 

  132.           expect(json_response['description']).to eq(specific_runner.description)
    133. 

  133.         end
    134. 

  134.       end
    135. 

  135. 

  136.       it 'should return 404 if runner does not exists' do
    137. 

  137.         get api('/runners/9999', admin)
    138. 

  138. 

  139.         expect(response.status).to eq(404)
    140. 

  140.       end
    141. 

  141.     end
    142. 

  142. 

  143.     context "runner project's administrative user" do
    144. 

  144.       context 'when runner is not shared' do
    145. 

  145.         it "should return runner's details" do
    146. 

  146.           get api("/runners/#{specific_runner.id}", user)
    147. 

  147. 

  148.           expect(response.status).to eq(200)
    149. 

  149.           expect(json_response['description']).to eq(specific_runner.description)
    150. 

  150.         end
    151. 

  151.       end
    152. 

  152. 

  153.       context 'when runner is shared' do
    154. 

  154.         it "should return runner's details" do
    155. 

  155.           get api("/runners/#{shared_runner.id}", user)
    156. 

  156. 

  157.           expect(response.status).to eq(200)
    158. 

  158.           expect(json_response['description']).to eq(shared_runner.description)
    159. 

  159.         end
    160. 

  160.       end
    161. 

  161.     end
    162. 

  162. 

  163.     context 'other authorized user' do
    164. 

  164.       it "should not return runner's details" do
    165. 

  165.         get api("/runners/#{specific_runner.id}", user2)
    166. 

  166. 

  167.         expect(response.status).to eq(403)
    168. 

  168.       end
    169. 

  169.     end
    170. 

  170. 

  171.     context 'unauthorized user' do
    172. 

  172.       it "should not return runner's details" do
    173. 

  173.         get api("/runners/#{specific_runner.id}")
    174. 

  174. 

  175.         expect(response.status).to eq(401)
    176. 

  176.       end
    177. 

  177.     end
    178. 

  178.   end
    179. 

  179. 

  180.   describe 'PUT /runners/:id' do
    181. 

  181.     context 'admin user' do
    182. 

  182.       context 'when runner is shared' do
    183. 

  183.         it 'should update runner' do
    184. 

  184.           description = shared_runner.description
    185. 

  185.           active = shared_runner.active
    186. 

  186. 

  187.           put api("/runners/#{shared_runner.id}", admin), description: "#{description}_updated", active: !active,
    188. 

  188.                                                           tag_list: ['ruby2.1', 'pgsql', 'mysql']
    189. 

  189.           shared_runner.reload
    190. 

  190. 

  191.           expect(response.status).to eq(200)
    192. 

  192.           expect(shared_runner.description).to eq("#{description}_updated")
    193. 

  193.           expect(shared_runner.active).to eq(!active)
    194. 

  194.           expect(shared_runner.tag_list).to include('ruby2.1', 'pgsql', 'mysql')
    195. 

  195.         end
    196. 

  196.       end
    197. 

  197. 

  198.       context 'when runner is not shared' do
    199. 

  199.         it 'should update runner' do
    200. 

  200.           description = specific_runner.description
    201. 

  201.           put api("/runners/#{specific_runner.id}", admin), description: 'test'
    202. 

  202.           specific_runner.reload
    203. 

  203. 

  204.           expect(response.status).to eq(200)
    205. 

  205.           expect(specific_runner.description).to eq('test')
    206. 

  206.           expect(specific_runner.description).not_to eq(description)
    207. 

  207.         end
    208. 

  208.       end
    209. 

  209. 

  210.       it 'should return 404 if runner does not exists' do
    211. 

  211.         put api('/runners/9999', admin), description: 'test'
    212. 

  212. 

  213.         expect(response.status).to eq(404)
    214. 

  214.       end
    215. 

  215.     end
    216. 

  216. 

  217.     context 'authorized user' do
    218. 

  218.       context 'when runner is shared' do
    219. 

  219.         it 'should not update runner' do
    220. 

  220.           put api("/runners/#{shared_runner.id}", user)
    221. 

  221. 

  222.           expect(response.status).to eq(403)
    223. 

  223.         end
    224. 

  224.       end
    225. 

  225. 

  226.       context 'when runner is not shared' do
    227. 

  227.         it 'should not update runner without access to it' do
    228. 

  228.           put api("/runners/#{specific_runner.id}", user2)
    229. 

  229. 

  230.           expect(response.status).to eq(403)
    231. 

  231.         end
    232. 

  232. 

  233.         it 'should update runner with access to it' do
    234. 

  234.           description = specific_runner.description
    235. 

  235.           put api("/runners/#{specific_runner.id}", admin), description: 'test'
    236. 

  236.           specific_runner.reload
    237. 

  237. 

  238.           expect(response.status).to eq(200)
    239. 

  239.           expect(specific_runner.description).to eq('test')
    240. 

  240.           expect(specific_runner.description).not_to eq(description)
    241. 

  241.         end
    242. 

  242.       end
    243. 

  243.     end
    244. 

  244. 

  245.     context 'unauthorized user' do
    246. 

  246.       it 'should not delete runner' do
    247. 

  247.         put api("/runners/#{specific_runner.id}")
    248. 

  248. 

  249.         expect(response.status).to eq(401)
    250. 

  250.       end
    251. 

  251.     end
    252. 

  252.   end
    253. 

  253. 

  254.   describe 'DELETE /runners/:id' do
    255. 

  255.     context 'admin user' do
    256. 

  256.       context 'when runner is shared' do
    257. 

  257.         it 'should delete runner' do
    258. 

  258.           expect do
    259. 

  259.             delete api("/runners/#{shared_runner.id}", admin)
    260. 

  260.           end.to change{ Ci::Runner.shared.count }.by(-1)
    261. 

  261.           expect(response.status).to eq(200)
    262. 

  262.         end
    263. 

  263.       end
    264. 

  264. 

  265.       context 'when runner is not shared' do
    266. 

  266.         it 'should delete unused runner' do
    267. 

  267.           expect do
    268. 

  268.             delete api("/runners/#{unused_specific_runner.id}", admin)
    269. 

  269.           end.to change{ Ci::Runner.specific.count }.by(-1)
    270. 

  270.           expect(response.status).to eq(200)
    271. 

  271.         end
    272. 

  272. 

  273.         it 'should delete used runner' do
    274. 

  274.           expect do
    275. 

  275.             delete api("/runners/#{specific_runner.id}", admin)
    276. 

  276.           end.to change{ Ci::Runner.specific.count }.by(-1)
    277. 

  277.           expect(response.status).to eq(200)
    278. 

  278.         end
    279. 

  279.       end
    280. 

  280. 

  281.       it 'should return 404 if runner does not exists' do
    282. 

  282.         delete api('/runners/9999', admin)
    283. 

  283. 

  284.         expect(response.status).to eq(404)
    285. 

  285.       end
    286. 

  286.     end
    287. 

  287. 

  288.     context 'authorized user' do
    289. 

  289.       context 'when runner is shared' do
    290. 

  290.         it 'should not delete runner' do
    291. 

  291.           delete api("/runners/#{shared_runner.id}", user)
    292. 

  292.           expect(response.status).to eq(403)
    293. 

  293.         end
    294. 

  294.       end
    295. 

  295. 

  296.       context 'when runner is not shared' do
    297. 

  297.         it 'should not delete runner without access to it' do
    298. 

  298.           delete api("/runners/#{specific_runner.id}", user2)
    299. 

  299.           expect(response.status).to eq(403)
    300. 

  300.         end
    301. 

  301. 

  302.         it 'should not delete runner with more than one associated project' do
    303. 

  303.           delete api("/runners/#{two_projects_runner.id}", user)
    304. 

  304.           expect(response.status).to eq(403)
    305. 

  305.         end
    306. 

  306. 

  307.         it 'should delete runner for one owned project' do
    308. 

  308.           expect do
    309. 

  309.             delete api("/runners/#{specific_runner.id}", user)
    310. 

  310.           end.to change{ Ci::Runner.specific.count }.by(-1)
    311. 

  311.           expect(response.status).to eq(200)
    312. 

  312.         end
    313. 

  313.       end
    314. 

  314.     end
    315. 

  315. 

  316.     context 'unauthorized user' do
    317. 

  317.       it 'should not delete runner' do
    318. 

  318.         delete api("/runners/#{specific_runner.id}")
    319. 

  319. 

  320.         expect(response.status).to eq(401)
    321. 

  321.       end
    322. 

  322.     end
    323. 

  323.   end
    324. 

  324. 

  325.   describe 'GET /projects/:id/runners' do
    326. 

  326.     context 'authorized user with master privileges' do
    327. 

  327.       it "should return project's runners" do
    328. 

  328.         get api("/projects/#{project.id}/runners", user)
    329. 

  329.         shared = json_response.any?{ |r| r['is_shared'] }
    330. 

  330. 

  331.         expect(response.status).to eq(200)
    332. 

  332.         expect(json_response).to be_an Array
    333. 

  333.         expect(shared).to be_truthy
    334. 

  334.       end
    335. 

  335.     end
    336. 

  336. 

  337.     context 'authorized user without master privileges' do
    338. 

  338.       it "should not return project's runners" do
    339. 

  339.         get api("/projects/#{project.id}/runners", user2)
    340. 

  340. 

  341.         expect(response.status).to eq(403)
    342. 

  342.       end
    343. 

  343.     end
    344. 

  344. 

  345.     context 'unauthorized user' do
    346. 

  346.       it "should not return project's runners" do
    347. 

  347.         get api("/projects/#{project.id}/runners")
    348. 

  348. 

  349.         expect(response.status).to eq(401)
    350. 

  350.       end
    351. 

  351.     end
    352. 

  352.   end
    353. 

  353. 

  354.   describe 'POST /projects/:id/runners' do
    355. 

  355.     context 'authorized user' do
    356. 

  356.       it 'should enable specific runner' do
    357. 

  357.         specific_runner2 = create(:ci_runner).tap do |runner|
    358. 

  358.           create(:ci_runner_project, runner: runner, project: project2)
    359. 

  359.         end
    360. 

  360. 

  361.         expect do
    362. 

  362.           post api("/projects/#{project.id}/runners", user), runner_id: specific_runner2.id
    363. 

  363.         end.to change{ project.runners.count }.by(+1)
    364. 

  364.         expect(response.status).to eq(201)
    365. 

  365.       end
    366. 

  366. 

  367.       it 'should avoid changes when enabling already enabled runner' do
    368. 

  368.         expect do
    369. 

  369.           post api("/projects/#{project.id}/runners", user), runner_id: specific_runner.id
    370. 

  370.         end.to change{ project.runners.count }.by(0)
    371. 

  371.         expect(response.status).to eq(201)
    372. 

  372.       end
    373. 

  373. 

  374.       it 'should not enable shared runner' do
    375. 

  375.         post api("/projects/#{project.id}/runners", user), runner_id: shared_runner.id
    376. 

  376. 

  377.         expect(response.status).to eq(403)
    378. 

  378.       end
    379. 

  379. 

  380.       context 'user is admin' do
    381. 

  381.         it 'should enable any specific runner' do
    382. 

  382.           expect do
    383. 

  383.             post api("/projects/#{project.id}/runners", admin), runner_id: unused_specific_runner.id
    384. 

  384.           end.to change{ project.runners.count }.by(+1)
    385. 

  385.           expect(response.status).to eq(201)
    386. 

  386.         end
    387. 

  387.       end
    388. 

  388. 

  389.       context 'user is not admin' do
    390. 

  390.         it 'should not enable runner without access to' do
    391. 

  391.           post api("/projects/#{project.id}/runners", user), runner_id: unused_specific_runner.id
    392. 

  392. 

  393.           expect(response.status).to eq(403)
    394. 

  394.         end
    395. 

  395.       end
    396. 

  396. 

  397.       it 'should raise an error when no runner_id param is provided' do
    398. 

  398.         post api("/projects/#{project.id}/runners", admin)
    399. 

  399. 

  400.         expect(response.status).to eq(400)
    401. 

  401.       end
    402. 

  402.     end
    403. 

  403. 

  404.     context 'authorized user without permissions' do
    405. 

  405.       it 'should not enable runner' do
    406. 

  406.         post api("/projects/#{project.id}/runners", user2)
    407. 

  407. 

  408.         expect(response.status).to eq(403)
    409. 

  409.       end
    410. 

  410.     end
    411. 

  411. 

  412.     context 'unauthorized user' do
    413. 

  413.       it 'should not enable runner' do
    414. 

  414.         post api("/projects/#{project.id}/runners")
    415. 

  415. 

  416.         expect(response.status).to eq(401)
    417. 

  417.       end
    418. 

  418.     end
    419. 

  419.   end
    420. 

  420. 

  421.   describe 'DELETE /projects/:id/runners/:runner_id' do
    422. 

  422.     context 'authorized user' do
    423. 

  423.       context 'when runner have more than one associated projects' do
    424. 

  424.         it "should disable project's runner" do
    425. 

  425.           expect do
    426. 

  426.             delete api("/projects/#{project.id}/runners/#{two_projects_runner.id}", user)
    427. 

  427.           end.to change{ project.runners.count }.by(-1)
    428. 

  428.           expect(response.status).to eq(200)
    429. 

  429.         end
    430. 

  430.       end
    431. 

  431. 

  432.       context 'when runner have one associated projects' do
    433. 

  433.         it "should not disable project's runner" do
    434. 

  434.           expect do
    435. 

  435.             delete api("/projects/#{project.id}/runners/#{specific_runner.id}", user)
    436. 

  436.           end.to change{ project.runners.count }.by(0)
    437. 

  437.           expect(response.status).to eq(403)
    438. 

  438.         end
    439. 

  439.       end
    440. 

  440. 

  441.       it 'should return 404 is runner is not found' do
    442. 

  442.         delete api("/projects/#{project.id}/runners/9999", user)
    443. 

  443. 

  444.         expect(response.status).to eq(404)
    445. 

  445.       end
    446. 

  446.     end
    447. 

  447. 

  448.     context 'authorized user without permissions' do
    449. 

  449.       it "should not disable project's runner" do
    450. 

  450.         delete api("/projects/#{project.id}/runners/#{specific_runner.id}", user2)
    451. 

  451. 

  452.         expect(response.status).to eq(403)
    453. 

  453.       end
    454. 

  454.     end
    455. 

  455. 

  456.     context 'unauthorized user' do
    457. 

  457.       it "should not disable project's runner" do
    458. 

  458.         delete api("/projects/#{project.id}/runners/#{specific_runner.id}")
    459. 

  459. 

  460.         expect(response.status).to eq(401)
    461. 

  461.       end
    462. 

  462.     end
    463. 

  463.   end
    464. 

  464. end
    465. 

  465.