#-- # Copyright (c) 2007 Robert S. Thau, Smartleaf, Inc. # # a copy of this software and associated documentation files (the # "Software"), to deal in the Software without restriction, including # without limitation the rights to use, copy, modify, merge, publish, # distribute, sublicense, and/or sell copies of the Software, and to # permit persons to whom the Software is furnished to do so, subject to # the following conditions: # # The above copyright notice and this permission notice shall be # included in all copies or substantial portions of the Software. # # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, # EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF # MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND # NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE # LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION # OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION # WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. #++ require File.dirname(__FILE__) + '/abstract_unit' class AcPhonyBlog < ActiveRecord::Base set_table_name 'blogs' include Access::Controlled attr_accessor :unguarded, :guarded_date, :guarded_nil, :guarded_number, :guarded_bool_false require_privilege :change_guarded, :to_set_attribute => [:name, :guarded_date, :guarded_number, :guarded_nil, :guarded_bool_false ] end # Collection elements for collection_select class Wombat < Struct.new( :id, :name ) end class WombatTeam < Struct.new( :team_name, :wombats ) end class AcsFormBuilderTest < ActionController::TestCase CHECKMARK = Access::Sensitive::FormBuilderMixin::CHECKMARK include ActionView::Helpers::TagHelper include ActionView::Helpers::FormHelper include ActionView::Helpers::FormOptionsHelper include ActionView::Helpers::DateHelper use_all_fixtures def test_everything_wrapped # Identify methods that actually name tag helpers --- # slightly tricky, since they keep adding more. # # The rule we use here is that it must be a method # defined on FormBuilder itself, which is not a setter, # nor an accessor on any attribute that has a setter. # # It works. For the moment. fbuilder = ActionView::Helpers::FormBuilder meth_names = fbuilder.instance_methods - fbuilder.superclass.instance_methods setters = meth_names.grep( /=$/ ) attrs = setters.collect &:chop helpers = meth_names - setters - attrs # Now check that the list of things we wrap (or *should*) covers it all. helpers-=Access::Sensitive::FormBuilderMixin::SIMPLE_FORM_HELPERS helpers-=Access::Sensitive::FormBuilderMixin::OTHER_FORM_HELPERS helpers-=Access::Sensitive::FormBuilderMixin::JUNK_METHODS assert_equal [], helpers end def test_text_field # The code paths for file fields, password fields, and hidden fields # are the same as here, so this test is assumed to cover those as well. blog = test_blog with_test_role_for_unprivileged_guy do |user, role| # Text non-permitted display test. # Done first, since subsequent tests will change privileges fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder, :if_not_permitted => :present_text do |f| assert_equal "fred the blog", f.text_field( :name ) end # Disabled-input test fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder do |f| # First, see what it does with no privileges... assert_dom_equal( trim(<<-EOD), f.text_field( :name ) ) EOD assert_dom_equal( trim(<<-EOD), f.text_field( :name, :size => 23 ) ) EOD # Now, with privileges: role.permissions << one_object_perm( :change_guarded, blog ) user.permissions :force_reload assert_dom_equal( trim(<<-EOD), f.text_field( :name ) ) EOD assert_dom_equal( trim(<<-EOD), f.text_field( :name, :size => 23 ) ) EOD # And lastly, on an attr with no privilege declarations # or requirements (just once, as the macro-generated test logic # is the same for all other helpers) assert_dom_equal( trim(<<-EOD), f.text_field( :unguarded, :size=>23 ) ) EOD end end end def test_text_area blog = test_blog with_test_role_for_unprivileged_guy do |user, role| # Text non-permitted display test. # Done first, since subsequent tests will change privileges fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder, :if_not_permitted => :present_text do |f| assert_equal "fred the blog", f.text_area( :name ) end # Disabled-input test fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder do |f| # First, see what it does with no privileges... assert_dom_equal( trim(<<-EOD), f.text_area( :name ) ) EOD assert_dom_equal( trim(<<-EOD), f.text_area( :name, :rows => 7 ) ) EOD # Now, with privileges: role.permissions << one_object_perm( :change_guarded, blog ) user.permissions :force_reload assert_dom_equal( trim(<<-EOD), f.text_area( :name ) ) EOD assert_dom_equal( trim(<<-EOD), f.text_area( :name, :rows => 7 ) ) EOD end end end def test_date_select # There's enough commonality in the internal code that # this should also cover for time_select and datetime_select... blog = test_blog with_test_role_for_unprivileged_guy do |user, role| # Text non-permitted display test. # Done first, since subsequent tests will change privileges. # Note that the text produced here is what comes from to_s, # which is unaware of and will not respect any :omit_foo # keyword args, etc. SUBOPTIMAL. fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder, :if_not_permitted => :present_text do |f| assert_equal Date.civil(1945,5,8).to_s, f.text_field( :guarded_date ) with_attr( blog, :guarded_date, nil ) do assert_equal '', f.text_field( :guarded_date ) end end # Disabled-input test fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder do |f| select_lines = f.date_select( :guarded_date ).split("\n") assert( select_lines.detect do |line| /select/ === line && /id="disabled_blog_guarded_date_1i"/ === line && /disabled="disabled"/ === line end) assert( select_lines.detect do |line| /option/ === line && /value="1945"/ === line && /selected="selected"/ === line end) role.permissions << one_object_perm( :change_guarded, blog ) user.permissions :force_reload select_lines = f.date_select( :guarded_date ).split("\n") assert( select_lines.detect do |line| /select/ === line && /id="blog_guarded_date_1i"/ === line && !(/disabled="disabled"/ === line) end) assert( select_lines.detect do |line| /option/ === line && /value="1945"/ === line && /selected="selected"/ === line end) end end end def test_check_box blog = test_blog with_test_role_for_unprivileged_guy do |user, role| # Text non-permitted display test. # Done first, since subsequent tests will change privileges fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder, :if_not_permitted => :present_text do |f| with_attr( blog, :guarded_number, 1 ) do assert_equal CHECKMARK, f.check_box( :guarded_number ) end with_attr( blog, :guarded_number, 0 ) do assert_equal '', f.check_box( :guarded_number, {}, true, false ) end with_attr( blog, :guarded_number, "1" ) do assert_equal CHECKMARK, f.check_box( :guarded_number ) end with_attr( blog, :guarded_number, "0" ) do assert_equal '', f.check_box( :guarded_number, {}, true, false ) end assert_equal '', f.check_box( :guarded_bool_false ) with_attr( blog, :guarded_bool_false, true ) do assert_equal CHECKMARK,f.check_box(:guarded_bool_false,{},true,false) end end # Disabled-input test fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder do |f| # There's some weirdness with the value in a hidden input here... # but since it's the disabled case, the value is ignored and # irrelevant... check_html = f.check_box( :guarded_number ) check_html = check_html.gsub( / EOD cbox_txt = f.check_box( :guarded_bool_false, {}, true, false ) assert_dom_equal( trim(<<-EOD), cbox_txt) EOD role.permissions << one_object_perm( :change_guarded, blog ) user.permissions :force_reload assert_dom_equal( trim(<<-EOD), f.check_box( :guarded_number )) EOD cbox_txt = f.check_box( :guarded_bool_false, {}, true, false ) assert_dom_equal( trim(<<-EOD), cbox_txt) EOD end end end def test_radio_button blog = test_blog with_test_role_for_unprivileged_guy do |user, role| # Text non-permitted display test. # Done first, since subsequent tests will change privileges fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder, :if_not_permitted => :present_text do |f| assert_equal '', f.radio_button( :guarded_number, 2 ) assert_equal CHECKMARK, f.radio_button( :guarded_number, 3 ) end # Disabled-input test fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder do |f| assert_dom_equal( trim(<<-EOD), f.radio_button( :guarded_number, 2 )) EOD assert_dom_equal( trim(<<-EOD), f.radio_button( :guarded_number, 3 )) EOD role.permissions << one_object_perm( :change_guarded, blog ) user.permissions :force_reload assert_dom_equal( trim(<<-EOD), f.radio_button( :guarded_number, 2 )) EOD assert_dom_equal( trim(<<-EOD), f.radio_button( :guarded_number, 3 )) EOD end end end def test_select blog = test_blog with_test_role_for_unprivileged_guy do |user, role| # Text non-permitted display test. # Done first, since subsequent tests will change privileges fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder, :if_not_permitted => :present_text do |f| assert_equal 'fred', f.select(:guarded_number,[['fred',3],['ethel',4]]) assert_equal '3', f.select(:guarded_number, [3,4]) assert_equal 'fred', f.select(:guarded_number, { :fred => 3, :ethel => 4 }) end # Disabled-input test fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder do |f| select_txt = f.select( :guarded_number, [['fred',3],['ethel',4]] ) assert_dom_equal( trim(<<-EOD), select_txt ) EOD role.permissions << one_object_perm( :change_guarded, blog ) user.permissions :force_reload select_txt = f.select( :guarded_number, [['fred',3],['ethel',4]] ) assert_dom_equal( trim(<<-EOD), select_txt ) EOD end end end def test_collection_select blog = test_blog wombats = [ Wombat.new(2, "Claude"), Wombat.new(3, "James"), Wombat.new(4, "Billingsley") ] with_test_role_for_unprivileged_guy do |user, role| # Text non-permitted display test. # Done first, since subsequent tests will change privileges fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder, :if_not_permitted => :present_text do |f| assert_equal 'James', f.collection_select( :guarded_number, wombats, :id, :name ) end # Now the disabled-elt test fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder do |f| select_txt = f.collection_select(:guarded_number, wombats, :id, :name) assert_dom_equal( trim(<<-EOD), select_txt ) EOD role.permissions << one_object_perm( :change_guarded, blog ) user.permissions :force_reload select_txt = f.collection_select(:guarded_number, wombats, :id, :name) assert_dom_equal( trim(<<-EOD), select_txt ) EOD end end end def test_grouped_collection_select blog = test_blog teams = [WombatTeam.new( "Manchester United", [ Wombat.new(2, "Claude"), Wombat.new(3, "James") ] ), WombatTeam.new( "Real Madrid", [ Wombat.new(4, "Billingsley") ])] with_test_role_for_unprivileged_guy do |user, role| # Text non-permitted display test. # Done first, since subsequent tests will change privileges fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder, :if_not_permitted => :present_text do |f| assert_equal 'James', f.grouped_collection_select( :guarded_number, teams, :wombats, :team_name, :id, :name ) end # Now the disabled-elt test fields_for :blog, blog, :builder => Access::Sensitive::FormBuilder do |f| select_txt = f.grouped_collection_select( :guarded_number, teams, :wombats, :team_name, :id, :name ) assert_dom_equal( trim(<<-EOD), select_txt ) EOD role.permissions << one_object_perm( :change_guarded, blog ) user.permissions :force_reload select_txt = f.grouped_collection_select( :guarded_number, teams, :wombats, :team_name, :id, :name ) assert_dom_equal( trim(<<-EOD), select_txt ) EOD end end end def test_precooked_selects blog = test_blog # country_select used to be here, till scrapped with Rails 2.2 [:time_zone_select].each do |selector| with_test_role_for_unprivileged_guy do |user, role| fields_for :blog, blog, :builder=>Access::Sensitive::FormBuilder do |f| txt = f.send selector, :guarded_nil first = txt.split("\n").first assert_match /