Add latest changes from gitlab-org/gitlab@master

7bb7a8d5 · GitLab Bot · 504ab1e3 · 7bb7a8d5 · 7bb7a8d5 · 7bb7a8d5
Commit 7bb7a8d5 authored Sep 25, 2019 by GitLab Bot
27 changed files
--- a/app/assets/javascripts/sidebar/components/assignees/assignee_avatar.vue
+++ b/app/assets/javascripts/sidebar/components/assignees/assignee_avatar.vue
@@ -42,6 +42,7 @@ export default {
      :width="imgSize"
      :class="`s${imgSize}`"
      class="avatar avatar-inline m-0"
+      data-qa-selector="avatar_image"
    />
    <i v-if="hasMergeIcon" aria-hidden="true" class="fa fa-exclamation-triangle merge-icon"></i>
  </span>

--- a/app/assets/javascripts/sidebar/components/assignees/assignee_title.vue
+++ b/app/assets/javascripts/sidebar/components/assignees/assignee_title.vue
@@ -32,13 +32,14 @@ export default {
 };
 </script>
 <template>
-  <div class="title hide-collapsed">
+  <div class="title hide-collapsed" data-qa-selector="assignee_title">
    {{ assigneeTitle }}
    <i v-if="loading" aria-hidden="true" class="fa fa-spinner fa-spin block-loading"></i>
    <a
      v-if="editable"
      class="js-sidebar-dropdown-toggle edit-link float-right"
      href="#"
+      data-qa-selector="assignee_edit_link"
      data-track-event="click_edit_button"
      data-track-label="right_sidebar"
      data-track-property="assignee"

--- a/app/assets/javascripts/sidebar/components/assignees/uncollapsed_assignee_list.vue
+++ b/app/assets/javascripts/sidebar/components/assignees/uncollapsed_assignee_list.vue
@@ -85,7 +85,12 @@ export default {
      </div>
    </div>
    <div v-if="renderShowMoreSection" class="user-list-more">
-      <button type="button" class="btn-link" @click="toggleShowLess">
+      <button
+        type="button"
+        class="btn-link"
+        data-qa-selector="more_assignees_link"
+        @click="toggleShowLess"
+      >
        <template v-if="showLess">
          {{ hiddenAssigneesLabel }}
        </template>

--- a/app/helpers/projects_helper.rb
+++ b/app/helpers/projects_helper.rb
@@ -76,7 +76,7 @@ module ProjectsHelper
      link_to(author_html, user_path(author), class: "author-link js-user-link #{"#{opts[:extra_class]}" if opts[:extra_class]} #{"#{opts[:mobile_classes]}" if opts[:mobile_classes]}", data: data_attrs).html_safe
    else
      title = opts[:title].sub(":name", sanitize(author.name))
-      link_to(author_html, user_path(author), class: "author-link has-tooltip", title: title, data: { container: 'body' }).html_safe
+      link_to(author_html, user_path(author), class: "author-link has-tooltip", title: title, data: { container: 'body', qa_selector: 'assignee_link' }).html_safe
    end
  end

--- a/app/models/concerns/spammable.rb
+++ b/app/models/concerns/spammable.rb
@@ -80,4 +80,9 @@ module Spammable
  def check_for_spam?
    true
  end
+  # Override in Spammable if differs
+  def allow_possible_spam?
+    Feature.enabled?(:allow_possible_spam, project)
+  end
 end
--- a/app/models/snippet.rb
+++ b/app/models/snippet.rb
@@ -14,6 +14,7 @@ class Snippet < ApplicationRecord
  include Editable
  include Gitlab::SQL::Pattern
  include FromUnion
+  extend ::Gitlab::Utils::Override
  cache_markdown_field :title, pipeline: :single_line
  cache_markdown_field :description
@@ -191,6 +192,12 @@ class Snippet < ApplicationRecord
      (public? && (title_changed? || content_changed?))
  end
+  # snippers are the biggest sources of spam
+  override :allow_possible_spam?
+  def allow_possible_spam?
+    false
+  end
  def spammable_entity_type
    'snippet'
  end

--- a/app/services/spam_service.rb
+++ b/app/services/spam_service.rb
@@ -37,7 +37,8 @@ class SpamService
    else
      # Otherwise, it goes to Akismet and check if it's a spam. If that's the
      # case, it assigns spammable record as "spam" and create a SpamLog record.
-      spammable.spam = check(api)
+      possible_spam = check(api)
+      spammable.spam = possible_spam unless spammable.allow_possible_spam?
      spammable.spam_log = spam_log
    end
  end

--- a/app/views/shared/issuable/_assignees.html.haml
+++ b/app/views/shared/issuable/_assignees.html.haml
@@ -7,4 +7,4 @@
  = link_to_member(@project, assignee, name: false, title: "Assigned to :name")
 - if more_assignees_count.positive?
-  %span{ class: 'avatar-counter has-tooltip', data: { container: 'body', placement: 'bottom', 'line-type' => 'old', 'original-title' => "+#{more_assignees_count} more assignees" } } +#{more_assignees_count}
+  %span{ class: 'avatar-counter has-tooltip', data: { container: 'body', placement: 'bottom', 'line-type' => 'old', 'original-title' => "+#{more_assignees_count} more assignees", qa_selector: 'avatar_counter' } } +#{more_assignees_count}
--- a/doc/development/i18n/externalization.md
+++ b/doc/development/i18n/externalization.md
@@ -313,17 +313,22 @@ Developer documentation][mdn].
 ## Updating the PO files with the new content
-Now that the new content is marked for translation, we need to update the PO
+Now that the new content is marked for translation, we need to update
-files with the following command:
+`locale/gitlab.pot` files with the following command:
 ```sh
 bin/rake gettext:regenerate
 ```
-This command will update the `locale/gitlab.pot` file with the newly externalized
+This command will update `locale/gitlab.pot` file with the newly externalized
 strings and remove any strings that aren't used anymore. You should check this
 file in. Once the changes are on master, they will be picked up by
-[Crowdin](http://translate.gitlab.com) and be presented for translation.
+[Crowdin](http://translate.gitlab.com) and be presented for
+translation.
+We don't need to check in any changes to the
+`locale/[language]/gitlab.po` files. Those will be updated in a [when
+translations from Crowdin are merged](merging_translations.md).
 If there are merge conflicts in the `gitlab.pot` file, you can delete the file
 and regenerate it using the same command.

--- a/doc/user/clusters/applications.md
+++ b/doc/user/clusters/applications.md
@@ -293,7 +293,7 @@ The applications below can be uninstalled.
 | ----------- | -------------- | ----- |
 | Cert-Manager | 12.2+         | The associated private key will be deleted and cannot be restored. Deployed applications will continue to use HTTPS, but certificates will not be renewed. Before uninstalling, you may wish to [back up your configuration](https://docs.cert-manager.io/en/latest/tasks/backup-restore-crds.html) or [revoke your certificates](https://letsencrypt.org/docs/revoking/) |
 | GitLab Runner  | 12.2+         | Any running pipelines will be canceled. |
-| Helm  | 12.2+         | The associated Tiller pod will be deleted and cannot be restored. |
+| Helm  | 12.2+         | The associated Tiller pod, the `gitlab-managed-apps` namespace, and all of its resources will be deleted and cannot be restored. |
 | Ingress  | 12.1+         | The associated load balancer and IP will be deleted and cannot be restored. Furthermore, it can only be uninstalled if JupyterHub is not installed. |
 | JupyterHub  | 12.1+         | All data not committed to GitLab will be deleted and cannot be restored. |
 | Knative  | 12.1+         | The associated IP will be deleted and cannot be restored. |

--- a/qa/qa/page/base.rb
+++ b/qa/qa/page/base.rb
@@ -131,6 +131,10 @@ module QA
        has_no_css?('.fa-spinner', wait: Capybara.default_max_wait_time)
      end
+      def finished_loading_block?
+        has_no_css?('.fa-spinner.block-loading', wait: Capybara.default_max_wait_time)
+      end
      def wait_for_animated_element(name)
        # It would be ideal if we could detect when the animation is complete
        # but in some cases there's nothing we can easily access via capybara

--- a/qa/qa/page/project/issue/index.rb
+++ b/qa/qa/page/project/issue/index.rb
@@ -5,14 +5,30 @@ module QA
    module Project
      module Issue
        class Index < Page::Base
+          view 'app/helpers/projects_helper.rb' do
+            element :assignee_link
+          end
          view 'app/views/projects/issues/_issue.html.haml' do
            element :issue_link, 'link_to issue.title' # rubocop:disable QA/ElementWithPattern
          end
+          view 'app/views/shared/issuable/_assignees.html.haml' do
+            element :avatar_counter
+          end
          view 'app/views/shared/issuable/_nav.html.haml' do
            element :closed_issues_link
          end
+          def assignee_link_count
+            all_elements(:assignee_link).count
+          end
+          def avatar_counter
+            find_element(:avatar_counter)
+          end
          def click_issue_link(title)
            click_link(title)
          end

--- a/qa/qa/page/project/issue/show.rb
+++ b/qa/qa/page/project/issue/show.rb
@@ -22,24 +22,54 @@ module QA
            element :noteable_note_item
          end
+          view 'app/assets/javascripts/sidebar/components/assignees/assignee_avatar.vue' do
+            element :avatar_image
+          end
+          view 'app/assets/javascripts/sidebar/components/assignees/assignee_title.vue' do
+            element :assignee_edit_link
+            element :assignee_title
+          end
+          view 'app/assets/javascripts/sidebar/components/assignees/uncollapsed_assignee_list.vue' do
+            element :more_assignees_link
+          end
          view 'app/helpers/dropdowns_helper.rb' do
            element :dropdown_input_field
          end
-          view 'app/views/shared/notes/_form.html.haml' do
+          view 'app/views/shared/issuable/_close_reopen_button.html.haml' do
-            element :new_note_form, 'new-note' # rubocop:disable QA/ElementWithPattern
+            element :reopen_issue_button
-            element :new_note_form, 'attr: :note' # rubocop:disable QA/ElementWithPattern
          end
          view 'app/views/shared/issuable/_sidebar.html.haml' do
+            element :assignee_block
            element :labels_block
            element :edit_link_labels
            element :dropdown_menu_labels
            element :milestone_link
          end
-          view 'app/views/shared/issuable/_close_reopen_button.html.haml' do
+          view 'app/views/shared/notes/_form.html.haml' do
-            element :reopen_issue_button
+            element :new_note_form, 'new-note' # rubocop:disable QA/ElementWithPattern
+            element :new_note_form, 'attr: :note' # rubocop:disable QA/ElementWithPattern
+          end
+          def assign(user)
+            click_element(:assignee_edit_link)
+            select_user(user.username)
+            click_body
+          end
+          def assignee_title
+            find_element(:assignee_title)
+          end
+          def avatar_image_count
+            wait_assignees_block_finish_loading do
+              all_elements(:avatar_image).count
+            end
          end
          def click_milestone_link
@@ -66,6 +96,10 @@ module QA
            end
          end
+          def more_assignees_link
+            find_element(:more_assignees_link)
+          end
          def select_all_activities_filter
            select_filter_with_text('Show all activity')
          end
@@ -103,6 +137,10 @@ module QA
            find_element(:labels_block)
          end
+          def toggle_more_assignees_link
+            click_element(:more_assignees_link)
+          end
          private
          def select_filter_with_text(text)
@@ -112,6 +150,20 @@ module QA
              find_element(:filter_options, text: text).click
            end
          end
+          def select_user(username)
+            find("#{element_selector_css(:assignee_block)} input").set(username)
+            find('.dropdown-menu-user-link', text: "@#{username}").click
+          end
+          def wait_assignees_block_finish_loading
+            within_element(:assignee_block) do
+              wait(reload: false, max: 10, interval: 1) do
+                finished_loading_block?
+                yield
+              end
+            end
+          end
        end
      end
    end

--- a/qa/qa/runtime/env.rb
+++ b/qa/qa/runtime/env.rb
@@ -145,6 +145,38 @@ module QA
        ENV['GITLAB_QA_PASSWORD_2']
      end
+      def gitlab_qa_username_3
+        ENV['GITLAB_QA_USERNAME_3'] || 'gitlab-qa-user3'
+      end
+      def gitlab_qa_password_3
+        ENV['GITLAB_QA_PASSWORD_3']
+      end
+      def gitlab_qa_username_4
+        ENV['GITLAB_QA_USERNAME_4'] || 'gitlab-qa-user4'
+      end
+      def gitlab_qa_password_4
+        ENV['GITLAB_QA_PASSWORD_4']
+      end
+      def gitlab_qa_username_5
+        ENV['GITLAB_QA_USERNAME_5'] || 'gitlab-qa-user5'
+      end
+      def gitlab_qa_password_5
+        ENV['GITLAB_QA_PASSWORD_5']
+      end
+      def gitlab_qa_username_6
+        ENV['GITLAB_QA_USERNAME_6'] || 'gitlab-qa-user6'
+      end
+      def gitlab_qa_password_6
+        ENV['GITLAB_QA_PASSWORD_6']
+      end
      def knapsack?
        !!(ENV['KNAPSACK_GENERATE_REPORT'] || ENV['KNAPSACK_REPORT_PATH'] || ENV['KNAPSACK_TEST_FILE_PATTERN'])
      end

--- a/spec/controllers/projects/issues_controller_spec.rb
+++ b/spec/controllers/projects/issues_controller_spec.rb
--- a/spec/controllers/projects/snippets_controller_spec.rb
+++ b/spec/controllers/projects/snippets_controller_spec.rb
@@ -111,7 +111,7 @@ describe Projects::SnippetsController do
        it 'creates a spam log' do
          expect { create_snippet(project, visibility_level: Snippet::PUBLIC) }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Title', user_id: user.id, noteable_type: 'ProjectSnippet')
        end
        it 'renders :new with recaptcha disabled' do
@@ -192,7 +192,7 @@ describe Projects::SnippetsController do
        it 'creates a spam log' do
          expect { update_snippet(title: 'Foo') }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Foo', user_id: user.id, noteable_type: 'ProjectSnippet')
        end
        it 'renders :edit with recaptcha disabled' do
@@ -237,7 +237,7 @@ describe Projects::SnippetsController do
        it 'creates a spam log' do
          expect { update_snippet(title: 'Foo', visibility_level: Snippet::PUBLIC) }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Foo', user_id: user.id, noteable_type: 'ProjectSnippet')
        end
        it 'renders :edit with recaptcha disabled' do

--- a/spec/controllers/snippets_controller_spec.rb
+++ b/spec/controllers/snippets_controller_spec.rb
@@ -269,7 +269,7 @@ describe SnippetsController do
        it 'creates a spam log' do
          expect { create_snippet(visibility_level: Snippet::PUBLIC) }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Title', user: user, noteable_type: 'PersonalSnippet')
        end
        it 'renders :new with recaptcha disabled' do
@@ -345,7 +345,7 @@ describe SnippetsController do
        it 'creates a spam log' do
          expect { update_snippet(title: 'Foo', visibility_level: Snippet::PUBLIC) }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Foo', user: user, noteable_type: 'PersonalSnippet')
        end
        it 'renders :edit with recaptcha disabled' do
@@ -389,8 +389,8 @@ describe SnippetsController do
        end
        it 'creates a spam log' do
-          expect { update_snippet(title: 'Foo') }
+          expect {update_snippet(title: 'Foo') }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Foo', user: user, noteable_type: 'PersonalSnippet')
        end
        it 'renders :edit with recaptcha disabled' do

--- a/spec/features/issues/spam_issues_spec.rb
+++ b/spec/features/issues/spam_issues_spec.rb
@@ -30,6 +30,11 @@ describe 'New issue', :js do
      visit new_project_issue_path(project)
    end
+    context 'when allow_possible_spam feature flag is false' do
+      before do
+        stub_feature_flags(allow_possible_spam: false)
+      end
      it 'creates an issue after solving reCaptcha' do
        fill_in 'issue_title', with: 'issue title'
        fill_in 'issue_description', with: 'issue description'
@@ -48,6 +53,27 @@ describe 'New issue', :js do
      end
    end
+    context 'when allow_possible_spam feature flag is true' do
+      before do
+        fill_in 'issue_title', with: 'issue title'
+        fill_in 'issue_description', with: 'issue description'
+      end
+      it 'creates an issue without a need to solve reCaptcha' do
+        click_button 'Submit issue'
+        expect(page).not_to have_css('.recaptcha')
+        expect(page.find('.issue-details h2.title')).to have_content('issue title')
+        expect(page.find('.issue-details .description')).to have_content('issue description')
+      end
+      it 'creates a spam log record' do
+        expect { click_button 'Submit issue' }
+          .to log_spam(title: 'issue title', description: 'issue description', user_id: user.id, noteable_type: 'Issue')
+      end
+    end
+  end
  context 'when not identified as a spam' do
    before do
      WebMock.stub_request(:any, /.*akismet.com.*/).to_return(body: 'false', status: 200)

--- a/spec/features/snippets/spam_snippets_spec.rb
+++ b/spec/features/snippets/spam_snippets_spec.rb
+# frozen_string_literal: true
+require 'spec_helper'
+describe 'User creates snippet', :js do
+  let(:user) { create(:user) }
+  before do
+    stub_feature_flags(allow_possible_spam: false)
+    stub_env('IN_MEMORY_APPLICATION_SETTINGS', 'false')
+    Gitlab::CurrentSettings.update!(
+      akismet_enabled: true,
+      akismet_api_key: 'testkey',
+      recaptcha_enabled: true,
+      recaptcha_site_key: 'test site key',
+      recaptcha_private_key: 'test private key'
+    )
+    sign_in(user)
+    visit new_snippet_path
+    fill_in 'personal_snippet_title', with: 'My Snippet Title'
+    fill_in 'personal_snippet_description', with: 'My Snippet **Description**'
+    find('#personal_snippet_visibility_level_20').set(true)
+    page.within('.file-editor') do
+      find('.ace_text-input', visible: false).send_keys 'Hello World!'
+    end
+  end
+  shared_examples 'solve recaptcha' do
+    it 'creates a snippet after solving reCaptcha' do
+      click_button('Create snippet')
+      wait_for_requests
+      # it is impossible to test recaptcha automatically and there is no possibility to fill in recaptcha
+      # recaptcha verification is skipped in test environment and it always returns true
+      expect(page).not_to have_content('My Snippet Title')
+      expect(page).to have_css('.recaptcha')
+      click_button('Submit personal snippet')
+      expect(page).to have_content('My Snippet Title')
+    end
+  end
+  context 'when identified as a spam' do
+    before do
+      WebMock.stub_request(:any, /.*akismet.com.*/).to_return(body: "true", status: 200)
+    end
+    context 'when allow_possible_spam feature flag is false' do
+      it_behaves_like 'solve recaptcha'
+    end
+    context 'when allow_possible_spam feature flag is true' do
+      it_behaves_like 'solve recaptcha'
+    end
+  end
+  context 'when not identified as a spam' do
+    before do
+      WebMock.stub_request(:any, /.*akismet.com.*/).to_return(body: "false", status: 200)
+    end
+    it 'creates a snippet' do
+      click_button('Create snippet')
+      wait_for_requests
+      expect(page).not_to have_css('.recaptcha')
+      expect(page).to have_content('My Snippet Title')
+    end
+  end
+end
--- a/spec/requests/api/issues/post_projects_issues_spec.rb
+++ b/spec/requests/api/issues/post_projects_issues_spec.rb
@@ -374,9 +374,17 @@ describe API::Issues do
  end
  describe 'POST /projects/:id/issues with spam filtering' do
+    def post_issue
+      post api("/projects/#{project.id}/issues", user), params: params
+    end
    before do
-      allow_any_instance_of(SpamService).to receive(:check_for_spam?).and_return(true)
+      expect_next_instance_of(SpamService) do |spam_service|
-      allow_any_instance_of(AkismetService).to receive_messages(spam?: true)
+        expect(spam_service).to receive_messages(check_for_spam?: true)
+      end
+      expect_next_instance_of(AkismetService) do |akismet_service|
+        expect(akismet_service).to receive_messages(spam?: true)
+      end
    end
    let(:params) do
@@ -387,17 +395,43 @@ describe API::Issues do
      }
    end
+    context 'when allow_possible_spam feature flag is false' do
+      before do
+        stub_feature_flags(allow_possible_spam: false)
+      end
      it 'does not create a new project issue' do
-      expect { post api("/projects/#{project.id}/issues", user), params: params }.not_to change(Issue, :count)
+        expect { post_issue }.not_to change(Issue, :count)
+      end
+      it 'returns correct status and message' do
+        post_issue
        expect(response).to have_gitlab_http_status(400)
        expect(json_response['message']).to eq({ 'error' => 'Spam detected' })
+      end
+      it 'creates a new spam log entry' do
+        expect { post_issue }
+          .to log_spam(title: 'new issue', description: 'content here', user_id: user.id, noteable_type: 'Issue')
+      end
+    end
+    context 'when allow_possible_spam feature flag is true' do
+      it 'does creates a new project issue' do
+        expect { post_issue }.to change(Issue, :count).by(1)
+      end
-      spam_logs = SpamLog.all
+      it 'returns correct status' do
-      expect(spam_logs.count).to eq(1)
+        post_issue
-      expect(spam_logs[0].title).to eq('new issue')
-      expect(spam_logs[0].description).to eq('content here')
+        expect(response).to have_gitlab_http_status(201)
-      expect(spam_logs[0].user).to eq(user)
+      end
-      expect(spam_logs[0].noteable_type).to eq('Issue')
+      it 'creates a new spam log entry' do
+        expect { post_issue }
+          .to log_spam(title: 'new issue', description: 'content here', user_id: user.id, noteable_type: 'Issue')
+      end
    end
  end

--- a/spec/requests/api/issues/put_projects_issues_spec.rb
+++ b/spec/requests/api/issues/put_projects_issues_spec.rb
@@ -181,6 +181,10 @@ describe API::Issues do
  end
  describe 'PUT /projects/:id/issues/:issue_iid with spam filtering' do
+    def update_issue
+      put api("/projects/#{project.id}/issues/#{issue.iid}", user), params: params
+    end
    let(:params) do
      {
        title: 'updated title',
@@ -189,21 +193,52 @@ describe API::Issues do
      }
    end
-    it 'does not create a new project issue' do
+    before do
-      allow_any_instance_of(SpamService).to receive_messages(check_for_spam?: true)
+      expect_next_instance_of(SpamService) do |spam_service|
-      allow_any_instance_of(AkismetService).to receive_messages(spam?: true)
+        expect(spam_service).to receive_messages(check_for_spam?: true)
+      end
+      expect_next_instance_of(AkismetService) do |akismet_service|
+        expect(akismet_service).to receive_messages(spam?: true)
+      end
+    end
-      put api("/projects/#{project.id}/issues/#{issue.iid}", user), params: params
+    context 'when allow_possible_spam feature flag is false' do
+      before do
+        stub_feature_flags(allow_possible_spam: false)
+      end
+      it 'does not update a project issue' do
+        expect { update_issue }.not_to change { issue.reload.title }
+      end
+      it 'returns correct status and message' do
+        update_issue
        expect(response).to have_gitlab_http_status(400)
-      expect(json_response['message']).to eq({ 'error' => 'Spam detected' })
+        expect(json_response).to include('message' => { 'error' => 'Spam detected' })
+      end
-      spam_logs = SpamLog.all
-      expect(spam_logs.count).to eq(1)
+      it 'creates a new spam log entry' do
-      expect(spam_logs[0].title).to eq('updated title')
+        expect { update_issue }
-      expect(spam_logs[0].description).to eq('content here')
+          .to log_spam(title: 'updated title', description: 'content here', user_id: user.id, noteable_type: 'Issue')
-      expect(spam_logs[0].user).to eq(user)
+      end
-      expect(spam_logs[0].noteable_type).to eq('Issue')
+    end
+    context 'when allow_possible_spam feature flag is true' do
+      it 'updates a project issue' do
+        expect { update_issue }.to change { issue.reload.title }
+      end
+      it 'returns correct status and message' do
+        update_issue
+        expect(response).to have_gitlab_http_status(200)
+      end
+      it 'creates a new spam log entry' do
+        expect { update_issue }
+          .to log_spam(title: 'updated title', description: 'content here', user_id: user.id, noteable_type: 'Issue')
+      end
    end
  end

--- a/spec/requests/api/project_snippets_spec.rb
+++ b/spec/requests/api/project_snippets_spec.rb
@@ -198,7 +198,7 @@ describe API::ProjectSnippets do
        it 'creates a spam log' do
          expect { create_snippet(project, visibility: 'public') }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Test Title', user_id: user.id, noteable_type: 'ProjectSnippet')
        end
      end
    end
@@ -289,7 +289,7 @@ describe API::ProjectSnippets do
        it 'creates a spam log' do
          expect { update_snippet(title: 'Foo') }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Foo', user_id: admin.id, noteable_type: 'ProjectSnippet')
        end
      end
@@ -306,7 +306,7 @@ describe API::ProjectSnippets do
        it 'creates a spam log' do
          expect { update_snippet(title: 'Foo', visibility: 'public') }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Foo', user_id: admin.id, noteable_type: 'ProjectSnippet')
        end
      end
    end

--- a/spec/requests/api/snippets_spec.rb
+++ b/spec/requests/api/snippets_spec.rb
@@ -254,7 +254,7 @@ describe API::Snippets do
        it 'creates a spam log' do
          expect { create_snippet(visibility: 'public') }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Test Title', user_id: user.id, noteable_type: 'PersonalSnippet')
        end
      end
    end
@@ -344,8 +344,7 @@ describe API::Snippets do
        end
        it 'creates a spam log' do
-          expect { update_snippet(title: 'Foo') }
+          expect { update_snippet(title: 'Foo') }.to log_spam(title: 'Foo', user_id: user.id, noteable_type: 'PersonalSnippet')
-            .to change { SpamLog.count }.by(1)
        end
      end
@@ -359,7 +358,7 @@ describe API::Snippets do
        it 'creates a spam log' do
          expect { update_snippet(title: 'Foo', visibility: 'public') }
-            .to change { SpamLog.count }.by(1)
+            .to log_spam(title: 'Foo', user_id: user.id, noteable_type: 'PersonalSnippet')
        end
      end
    end

--- a/spec/services/create_snippet_service_spec.rb
+++ b/spec/services/create_snippet_service_spec.rb
@@ -3,26 +3,28 @@
 require 'spec_helper'
 describe CreateSnippetService do
-  before do
+  let(:user) { create(:user) }
-    @user = create :user
+  let(:admin) { create(:user, :admin) }
-    @admin = create :user, admin: true
+  let(:opts) { base_opts.merge(extra_opts) }
-    @opts = {
+  let(:base_opts) do
+    {
      title: 'Test snippet',
      file_name: 'snippet.rb',
      content: 'puts "hello world"',
      visibility_level: Gitlab::VisibilityLevel::PRIVATE
    }
  end
+  let(:extra_opts) { {} }
  context 'When public visibility is restricted' do
+    let(:extra_opts) { { visibility_level: Gitlab::VisibilityLevel::PUBLIC } }
    before do
      stub_application_setting(restricted_visibility_levels: [Gitlab::VisibilityLevel::PUBLIC])
-      @opts.merge!(visibility_level: Gitlab::VisibilityLevel::PUBLIC)
    end
    it 'non-admins are not able to create a public snippet' do
-      snippet = create_snippet(nil, @user, @opts)
+      snippet = create_snippet(nil, user, opts)
      expect(snippet.errors.messages).to have_key(:visibility_level)
      expect(snippet.errors.messages[:visibility_level].first).to(
        match('has been restricted')
@@ -30,37 +32,81 @@ describe CreateSnippetService do
    end
    it 'admins are able to create a public snippet' do
-      snippet = create_snippet(nil, @admin, @opts)
+      snippet = create_snippet(nil, admin, opts)
      expect(snippet.errors.any?).to be_falsey
      expect(snippet.visibility_level).to eq(Gitlab::VisibilityLevel::PUBLIC)
    end
    describe "when visibility level is passed as a string" do
+      let(:extra_opts) { { visibility: 'internal' } }
      before do
-        @opts[:visibility] = 'internal'
+        base_opts.delete(:visibility_level)
-        @opts.delete(:visibility_level)
      end
      it "assigns the correct visibility level" do
-        snippet = create_snippet(nil, @user, @opts)
+        snippet = create_snippet(nil, user, opts)
        expect(snippet.errors.any?).to be_falsey
        expect(snippet.visibility_level).to eq(Gitlab::VisibilityLevel::INTERNAL)
      end
    end
  end
+  context 'checking spam' do
+    shared_examples 'marked as spam' do
+      let(:snippet) { create_snippet(nil, admin, opts) }
+      it 'marks a snippet as a spam ' do
+        expect(snippet).to be_spam
+      end
+      it 'invalidates the snippet' do
+        expect(snippet).to be_invalid
+      end
+      it 'creates a new spam_log' do
+        expect { snippet }
+          .to log_spam(title: snippet.title, noteable_type: 'PersonalSnippet')
+      end
+      it 'assigns a spam_log to an issue' do
+        expect(snippet.spam_log).to eq(SpamLog.last)
+      end
+    end
+    let(:extra_opts) do
+      { visibility_level: Gitlab::VisibilityLevel::PUBLIC, request: double(:request, env: {}) }
+    end
+    before do
+      expect_next_instance_of(AkismetService) do |akismet_service|
+        expect(akismet_service).to receive_messages(spam?: true)
+      end
+    end
+    [true, false, nil].each do |allow_possible_spam|
+      context "when recaptcha_disabled flag is #{allow_possible_spam.inspect}" do
+        before do
+          stub_feature_flags(allow_possible_spam: allow_possible_spam) unless allow_possible_spam.nil?
+        end
+        it_behaves_like 'marked as spam'
+      end
+    end
+  end
  describe 'usage counter' do
    let(:counter) { Gitlab::UsageDataCounters::SnippetCounter }
    it 'increments count' do
      expect do
-        create_snippet(nil, @admin, @opts)
+        create_snippet(nil, admin, opts)
      end.to change { counter.read(:create) }.by 1
    end
    it 'does not increment count if create fails' do
      expect do
-        create_snippet(nil, @admin, {})
+        create_snippet(nil, admin, {})
      end.not_to change { counter.read(:create) }
    end
  end

--- a/spec/services/issues/create_service_spec.rb
+++ b/spec/services/issues/create_service_spec.rb
@@ -344,7 +344,7 @@ describe Issues::CreateService do
      end
      before do
-        allow_any_instance_of(SpamService).to receive(:check_for_spam?).and_return(true)
+        stub_feature_flags(allow_possible_spam: false)
      end
      context 'when recaptcha was verified' do
@@ -384,31 +384,67 @@ describe Issues::CreateService do
      end
      context 'when recaptcha was not verified' do
+        before do
+          expect_next_instance_of(SpamService) do |spam_service|
+            expect(spam_service).to receive_messages(check_for_spam?: true)
+          end
+        end
        context 'when akismet detects spam' do
          before do
-            allow_any_instance_of(AkismetService).to receive(:spam?).and_return(true)
+            expect_next_instance_of(AkismetService) do |akismet_service|
+              expect(akismet_service).to receive_messages(spam?: true)
+            end
          end
+          context 'when issuables_recaptcha_enabled feature flag is true' do
            it 'marks an issue as a spam ' do
              expect(issue).to be_spam
            end
-          it 'an issue is not valid ' do
+            it 'invalidates the issue' do
-            expect(issue.valid?).to be_falsey
+              expect(issue).to be_invalid
+            end
+            it 'creates a new spam_log' do
+              expect { issue }
+                .to log_spam(title: issue.title, description: issue.description, user_id: user.id, noteable_type: 'Issue')
+            end
+            it 'assigns a spam_log to an issue' do
+              expect(issue.spam_log).to eq(SpamLog.last)
+            end
+          end
+          context 'when issuable_recaptcha_enabled feature flag is false' do
+            before do
+              stub_feature_flags(allow_possible_spam: true)
+            end
+            it 'does not mark an issue as a spam ' do
+              expect(issue).not_to be_spam
+            end
+            it 'accepts the issue as valid' do
+              expect(issue).to be_valid
            end
            it 'creates a new spam_log' do
-            expect {issue}.to change {SpamLog.count}.from(0).to(1)
+              expect { issue }
+                .to log_spam(title: issue.title, description: issue.description, user_id: user.id, noteable_type: 'Issue')
            end
            it 'assigns a spam_log to an issue' do
              expect(issue.spam_log).to eq(SpamLog.last)
            end
          end
+        end
        context 'when akismet does not detect spam' do
          before do
-            allow_any_instance_of(AkismetService).to receive(:spam?).and_return(false)
+            expect_next_instance_of(AkismetService) do |akismet_service|
+              expect(akismet_service).to receive_messages(spam?: false)
+            end
          end
          it 'does not mark an issue as a spam ' do

--- a/spec/services/spam_service_spec.rb
+++ b/spec/services/spam_service_spec.rb
@@ -44,30 +44,50 @@ describe SpamService do
        end
        context 'when indicated as spam by akismet' do
+          shared_examples 'akismet spam' do
+            it 'doesnt check as spam when request is missing' do
+              check_spam(issue, nil, false)
+              expect(issue).not_to be_spam
+            end
+            it 'creates a spam log' do
+              expect { check_spam(issue, request, false) }
+                .to log_spam(title: issue.title, description: issue.description, noteable_type: 'Issue')
+            end
+            it 'does not yield to the block' do
+              expect(check_spam(issue, request, false))
+                .to eql(SpamLog.last)
+            end
+          end
          before do
            allow(AkismetService).to receive(:new).and_return(double(spam?: true))
          end
-          it 'doesnt check as spam when request is missing' do
+          context 'when allow_possible_spam feature flag is false' do
-            check_spam(issue, nil, false)
+            before do
+              stub_feature_flags(allow_possible_spam: false)
-            expect(issue.spam).to be_falsey
            end
+            it_behaves_like 'akismet spam'
            it 'checks as spam' do
              check_spam(issue, request, false)
              expect(issue.spam).to be_truthy
            end
-          it 'creates a spam log' do
-            expect { check_spam(issue, request, false) }
-              .to change { SpamLog.count }.from(0).to(1)
          end
-          it 'doesnt yield block' do
+          context 'when allow_possible_spam feature flag is true' do
-            expect(check_spam(issue, request, false))
+            it_behaves_like 'akismet spam'
-              .to eql(SpamLog.last)
+            it 'does not check as spam' do
+              check_spam(issue, request, false)
+              expect(issue.spam).to be_nil
+            end
          end
        end

--- a/spec/support/matchers/log_spam.rb
+++ b/spec/support/matchers/log_spam.rb
+# frozen_string_literal: true
+# This matcher checkes if one spam log with provided attributes was created
+#
+# Example:
+#
+# expect { create_issue }.to log_spam
+RSpec::Matchers.define :log_spam do |expected|
+  def spam_logs
+    SpamLog.all
+  end
+  match do |block|
+    block.call
+    expect(spam_logs).to contain_exactly(
+      have_attributes(expected)
+    )
+  end
+  description do
+    count = spam_logs.count
+    if count == 1
+      keys = expected.keys.map(&:to_s)
+      actual = spam_logs.first.attributes.slice(*keys)
+      "create a spam log with #{expected} attributes. #{actual} created instead."
+    else
+      "create exactly 1 spam log with #{expected} attributes. #{count} spam logs created instead."
+    end
+  end
+  supports_block_expectations
+end