Spec: admin permissions, admin users

Efrain Chu-Jon · Bryan Madsen · commit 0f2fd5ad69bc · 2012-05-14T10:24:48.000-06:00
Change-Id: I344996d1155352ba09eede187a154e0c2f4e1819 tested: 1. locking permissions 1. enable permissions 1. disabling permissions 1. go to account-level roles page 1. role permissions verified 1. add, delete new role 1. verify permissions for new role 1. add a new user 1. add short, and sortable name 1. searching for a user 1. search for bogus user returns none Reviewed-on: https://gerrit.instructure.com/10665 Tested-by: Jenkins <jenkins@instructure.com> Reviewed-by: Bryan Madsen <bryan@instructure.com>
diff --git a/app/views/role_overrides/index.html.erb b/app/views/role_overrides/index.html.erb
@@ -70,7 +70,7 @@
       <% if @managing_account_roles %>
         <a href="<%= context_url(@context, :context_permissions_url) %>"><%= t 'links.manage_course_roles', "Manage Course-Level Roles" %></a>
       <% else %>
-        <a href="<%= context_url(@context, :context_permissions_url, :account_roles => 1) %>"><%= t 'links.manage_accoiunt_roles', "Manage Account-Level Roles" %></a>
+        <a id="course_level_roles" href="<%= context_url(@context, :context_permissions_url, :account_roles => 1) %>"><%= t 'links.manage_accoiunt_roles', "Manage Account-Level Roles" %></a>
       <% end %>
     <% end %>
   </div>
@@ -93,11 +93,11 @@
       <% end %>
       <tr>
         <td colspan="2" style="padding: 2px 3px;">
-          <% form_tag(context_url(@context, :add_role_context_permissions_url)) do %>
+          <%form_tag(context_url(@context, :add_role_context_permissions_url)) do %>
             <input type="hidden" name="account_roles" value="1"/>
             <%= before_label :new_role_type, "New Role Type" %>
-            <input type="text" name="role_type"/>
-            <button class="button" type="submit"><%= image_tag "add.png" %> <%= t '#buttons.add', "Add" %></button>
+            <input class= "add_new_role" type="text" name="role_type"/>
+            <button  id="add_new_role_button" class="button" type="submit"><%= image_tag "add.png" %> <%= t '#buttons.add', "Add" %></button>
           <% end %>
         </td>
       </tr>
@@ -143,7 +143,7 @@
       </tbody>
     </table>
     <div class="button-container">
-      <button type="submit" class="button"><%= t 'buttons.save', "Save Changes" %></button>
+      <button type="submit" class="save_permissions_changes button"><%= t 'buttons.save', "Save Changes" %></button>
       <a class="cancel_button button-secondary" href="<%= url_for(:back) %>"><%= t '#buttons.cancel', "Cancel" %></a>
     </div>
   <% end -%>
diff --git a/spec/selenium/admin_permissions_spec.rb b/spec/selenium/admin_permissions_spec.rb
@@ -0,0 +1,196 @@
+require File.expand_path(File.dirname(__FILE__) + '/common')
+
+describe "admin permissions" do
+  it_should_behave_like "in-process server selenium tests"
+
+  before (:each) do
+    course_with_admin_logged_in
+  end
+
+  def has_default_permission? (permission, enrollment_type)
+    default_permissions = Permissions.retrieve
+    default_permissions[permission][:true_for].include? enrollment_type
+  end
+
+  def get_updated_role (permission, enrollment_type)
+    RoleOverride.first(:conditions => {:permission => permission.to_s, :enrollment_type => enrollment_type})
+  end
+
+  def get_checkbox (permission, selector, enrollment_type)
+    row = nil
+    permissions = ff("#permissions-table tr > th")
+    permissions.each do |elem|
+      if (elem.text.include? permission)
+        row = elem.find_element(:xpath, "..")
+        break
+      end
+    end
+    #enrollment type is the number corresponding to the role i.e. Student = 0, Ta = 1, Teacher = 2...
+    element = row.find_elements(:css, selector)[enrollment_type]
+  end
+
+  def checkbox_verifier(permission, enrollment_type, disable_permission = false, locked = false)
+    selector = locked ? ".lock" : ".six-checkbox"
+    #get the element we need
+    check_box = get_checkbox(permission, selector, enrollment_type)
+    #we iterate according to the permission event
+    iterate = disable_permission ? 2 : 1
+    iterate.times { check_box.click }
+    f(".save_permissions_changes").click
+    wait_for_ajax_requests
+    check_box = get_checkbox(permission, selector, enrollment_type)
+    if (locked)
+      check_box.find_element(:xpath, "..").find_element(:css, "input").should have_value "true"
+    else
+      if (disable_permission)
+        check_box.find_element(:css, "input").should have_value "unchecked"
+      else
+        check_box.find_element(:css, "input").should have_value "checked"
+      end
+    end
+  end
+
+  def permissions_verifier(opts, default_permitted = false, disable_permission = false, locked = false)
+    if (default_permitted)
+      has_default_permission?(opts.keys[0], opts.values[0]).should be_true
+    else
+      has_default_permission?(opts.keys[0], opts.values[0]).should be_false
+    end
+    role = get_updated_role(opts.keys[0], opts.values[0])
+    role.should be_present
+    if (disable_permission)
+      role.enabled.should be_false
+    else
+      if (!locked)
+        role.enabled.should be_true
+      end
+    end
+    if (locked)
+      role.locked.should be_true
+    else
+      role.locked.should be_false
+    end
+
+  end
+
+  describe "default role permissions" do
+    before (:each) do
+      get "/accounts/#{Account.default.id}/permissions"
+    end
+
+    it "should enable and then disable read sis data for students" do
+      checkbox_verifier("Read SIS data", 0)
+      opts = {:read_sis => "StudentEnrollment"}
+      permissions_verifier(opts)
+      check_box = get_checkbox("Read SIS data", ".six-checkbox", 0)
+      check_box.click
+      f(".save_permissions_changes").click
+      wait_for_ajax_requests
+      check_box = get_checkbox("Read SIS data", ".six-checkbox", 0)
+      check_box.find_element(:css, "input").should have_value "unchecked"
+      permissions_verifier(opts, false, true)
+    end
+
+    it "should enable read sis data for TAs" do
+      checkbox_verifier("Read SIS data", 1)
+      opts = {:read_sis => "TaEnrollment"}
+      permissions_verifier(opts)
+    end
+
+    it "should lock sis data for students" do
+      checkbox_verifier("Read SIS data", 0, false, true)
+      opts = {:read_sis => "StudentEnrollment"}
+      permissions_verifier(opts, false, false, true)
+    end
+
+    it "should check that teachers have default read sis data enabled and then disable it" do
+      checkbox_verifier("Read SIS data", 2, true)
+      opts= {:read_sis => "TeacherEnrollment"}
+      permissions_verifier(opts, true, true)
+    end
+
+    it "should not enable read sis data for course designer " do
+      has_default_permission?(:read_sis, "DesignerEnrollment").should be_false
+      designer = get_checkbox("Read SIS data", ".six-checkbox", 3)
+      designer.attribute('title').should include_text "you do not have permission"
+      designer.click
+      f(".save_permissions_changes").click
+      wait_for_ajax_requests
+      designer_role = get_updated_role :read_sis, "DesignerEnrollment"
+      designer_role.should be_nil
+      designer = get_checkbox("Read SIS data", ".six-checkbox", 3)
+      designer.find_element(:css, "input").should have_value ""
+    end
+
+    it "should enable manage wiki for observer" do
+      element_hash = checkbox_verifier("Manage wiki", 4)
+      opts = {:manage_wiki => "ObserverEnrollment"}
+      permissions_verifier(opts)
+    end
+
+    it "should enable view all grades for designer" do
+      element_hash = checkbox_verifier("View all grades", 3)
+      opts = {:view_all_grades => "DesignerEnrollment"}
+      permissions_verifier(opts)
+    end
+
+    it "should navigate to manage account-level roles" do
+      f("#course_level_roles").click
+      wait_for_ajax_requests
+      f("#content h2").should include_text "Account Permissions"
+    end
+  end
+
+  describe "new role permissions" do
+    before (:each) do
+      get "/accounts/#{Account.default.id}/permissions?account_roles=1"
+    end
+
+    def add_new_role role
+      f(".add_new_role").send_keys(role)
+      f("#add_new_role_button").click
+      wait_for_ajax_requests
+      Account.default.account_membership_types.should include role
+      f("#permissions-table tr").should include_text role
+    end
+
+    it "should add a new account role type" do
+      role = "New Role"
+      add_new_role(role)
+    end
+
+    it "should delete an added role" do
+      role = "New Role"
+      add_new_role(role)
+      f(".remove_role_link").click
+      driver.switch_to.alert.accept
+      wait_for_ajax_requests
+      Account.default.account_membership_types.should_not include role
+      f("#permissions-table tr").should_not include_text role
+    end
+
+    it "should enable manage permissions of new role" do
+      role = "New Role"
+      add_new_role(role)
+      checkbox_verifier("Manage permissions", 1)
+      opts={:manage_role_overrides => role}
+      permissions_verifier(opts)
+    end
+
+    it "should disable manage permissions of new role" do
+      role = "New Role"
+      add_new_role(role)
+      checkbox_verifier("Manage permissions", 1, true)
+      opts={:manage_role_overrides => role}
+      permissions_verifier(opts, false, true)
+    end
+
+    it "should lock manage permissions of new role" do
+      role = "New Role"
+      add_new_role(role)
+      checkbox_verifier("Manage permissions", 1, false, true)
+      opts={:manage_role_overrides => role}
+      permissions_verifier(opts, false, false, true)
+    end
+  end
+end
diff --git a/spec/selenium/admin_users_spec.rb b/spec/selenium/admin_users_spec.rb
@@ -0,0 +1,87 @@
+require File.expand_path(File.dirname(__FILE__) + '/common')
+
+describe "admin courses tab" do
+  it_should_behave_like "in-process server selenium tests"
+  
+  before (:each) do
+    course_with_admin_logged_in
+    get "/accounts/#{Account.default.id}/users"
+  end
+  
+  def add_user (opts={})
+   f(".add_user_link").click
+   name = opts[:name] ? opts[:name] : "user1"
+   email = opts[:email] ? opts[:email] : "user1@test.com"
+   sortable_name = opts[:sortable_name] ? opts[:sortable_name] : name
+   confirmation = opts[:confirmation] ? opts[:confirmation] : 1
+   short_name = opts[:short_name] ? opts[:short_name] : name
+   if (!short_name.eql? name)
+       replace_content f("#user_short_name"), short_name
+   end
+   
+   if(!sortable_name.eql? name)
+      replace_content f("#user_sortable_name"), sortable_name
+   end
+   is_checked("#pseudonym_send_confirmation").should be_true
+   if (confirmation == 0)
+      f("#pseudonym_send_confirmation").click
+      is_checked("#pseudonym_send_confirmation").should be_false
+   end
+   f("#add_user_form #user_name").send_keys name
+   f("#pseudonym_unique_id").send_keys email
+   f("#add_user_form [type='submit']").click
+   wait_for_ajax_requests
+   user = User.first(:conditions =>{:name => name})
+   user.should be_present
+   user.sortable_name.should eql sortable_name
+   user.short_name.should eql short_name
+   user.email.should eql email
+   user
+  end
+  
+  it "should add an new user" do
+    opts = {:name => "user_name"}
+    user = add_user opts
+    #we need to refresh the page to see the user
+    refresh_page
+    f("#user_#{user.id}").should be_displayed
+    f("#user_#{user.id}").should include_text "user_name"
+  end
+  
+  it "should add an new user with a sortable name" do
+    opts = {:sortable_name => "sortable name"}
+    add_user(opts)
+  end
+   
+  it "should add an new user with a short name" do
+    opts = {:short_name => "short name"}
+    add_user(opts)
+  end
+  
+  it "should add a new user with confirmation disabled" do
+    opts = {:confirmation => 0}
+    add_user(opts) 
+  end
+  
+  it "should search for a user and should go to it" do
+    name = "user_1"
+    opts = {:name => name}
+    add_user(opts)
+    f("#right-side #user_name").send_keys(name)
+    ff(".ui-menu-item .ui-corner-all").count > 0
+    wait_for_ajax_requests
+    fj(".ui-menu-item .ui-corner-all:visible").should include_text(name)
+    fj(".ui-menu-item .ui-corner-all:visible").click
+    wait_for_ajax_requests
+    f("#content h2").should include_text name
+  end
+  
+  it "should search for a bogus user" do
+    name = "user_1"
+    opts = {:name => name}
+    add_user(opts)
+    bogus_name = "ser 1"
+    f("#right-side #user_name").send_keys(bogus_name)
+    ff(".ui-menu-item .ui-corner-all").count == 0
+  end
+end 
