Commit 3c3ce8d7 authored by Igor Drozdov's avatar Igor Drozdov

Merge branch '228706-fj-improve-api-project-snippet-spec' into 'master'

Improve requests/api/project_snippets_spec performance

See merge request gitlab-org/gitlab!45127
parents a4baa230 263f4247
...@@ -6,21 +6,16 @@ RSpec.describe API::ProjectSnippets do ...@@ -6,21 +6,16 @@ RSpec.describe API::ProjectSnippets do
include SnippetHelpers include SnippetHelpers
let_it_be(:project) { create(:project, :public) } let_it_be(:project) { create(:project, :public) }
let_it_be(:user) { create(:user) }
let_it_be(:admin) { create(:admin) }
let_it_be(:project_no_snippets) { create(:project, :snippets_disabled) } let_it_be(:project_no_snippets) { create(:project, :snippets_disabled) }
let_it_be(:user) { create(:user, developer_projects: [project_no_snippets]) }
before do let_it_be(:admin) { create(:admin, developer_projects: [project_no_snippets]) }
project_no_snippets.add_developer(admin) let_it_be(:public_snippet, reload: true) { create(:project_snippet, :public, :repository, project: project) }
project_no_snippets.add_developer(user)
end
describe "GET /projects/:project_id/snippets/:id/user_agent_detail" do describe "GET /projects/:project_id/snippets/:id/user_agent_detail" do
let_it_be(:snippet) { create(:project_snippet, :public, project: project) } let_it_be(:user_agent_detail) { create(:user_agent_detail, subject: public_snippet) }
let_it_be(:user_agent_detail) { create(:user_agent_detail, subject: snippet) }
it 'exposes known attributes' do it 'exposes known attributes' do
get api("/projects/#{project.id}/snippets/#{snippet.id}/user_agent_detail", admin) get api("/projects/#{project.id}/snippets/#{public_snippet.id}/user_agent_detail", admin)
expect(response).to have_gitlab_http_status(:ok) expect(response).to have_gitlab_http_status(:ok)
expect(json_response['user_agent']).to eq(user_agent_detail.user_agent) expect(json_response['user_agent']).to eq(user_agent_detail.user_agent)
...@@ -31,29 +26,27 @@ RSpec.describe API::ProjectSnippets do ...@@ -31,29 +26,27 @@ RSpec.describe API::ProjectSnippets do
it 'respects project scoping' do it 'respects project scoping' do
other_project = create(:project) other_project = create(:project)
get api("/projects/#{other_project.id}/snippets/#{snippet.id}/user_agent_detail", admin) get api("/projects/#{other_project.id}/snippets/#{public_snippet.id}/user_agent_detail", admin)
expect(response).to have_gitlab_http_status(:not_found) expect(response).to have_gitlab_http_status(:not_found)
end end
it "returns unauthorized for non-admin users" do it "returns unauthorized for non-admin users" do
get api("/projects/#{snippet.project.id}/snippets/#{snippet.id}/user_agent_detail", user) get api("/projects/#{public_snippet.project.id}/snippets/#{public_snippet.id}/user_agent_detail", user)
expect(response).to have_gitlab_http_status(:forbidden) expect(response).to have_gitlab_http_status(:forbidden)
end end
context 'with snippets disabled' do context 'with snippets disabled' do
it_behaves_like '403 response' do it_behaves_like '403 response' do
let(:request) { get api("/projects/#{project_no_snippets.id}/snippets/123/user_agent_detail", admin) } let(:request) { get api("/projects/#{project_no_snippets.id}/snippets/#{non_existing_record_id}/user_agent_detail", admin) }
end end
end end
end end
describe 'GET /projects/:project_id/snippets/' do describe 'GET /projects/:project_id/snippets/' do
let(:user) { create(:user) }
it 'returns all snippets available to team member' do it 'returns all snippets available to team member' do
project.add_developer(user) project.add_developer(user)
public_snippet = create(:project_snippet, :public, project: project)
internal_snippet = create(:project_snippet, :internal, project: project) internal_snippet = create(:project_snippet, :internal, project: project)
private_snippet = create(:project_snippet, :private, project: project) private_snippet = create(:project_snippet, :private, project: project)
...@@ -62,8 +55,7 @@ RSpec.describe API::ProjectSnippets do ...@@ -62,8 +55,7 @@ RSpec.describe API::ProjectSnippets do
expect(response).to have_gitlab_http_status(:ok) expect(response).to have_gitlab_http_status(:ok)
expect(response).to include_pagination_headers expect(response).to include_pagination_headers
expect(json_response).to be_an Array expect(json_response).to be_an Array
expect(json_response.size).to eq(3) expect(json_response.map { |snippet| snippet['id'] }).to contain_exactly(public_snippet.id, internal_snippet.id, private_snippet.id)
expect(json_response.map { |snippet| snippet['id'] }).to include(public_snippet.id, internal_snippet.id, private_snippet.id)
expect(json_response.last).to have_key('web_url') expect(json_response.last).to have_key('web_url')
end end
...@@ -75,7 +67,7 @@ RSpec.describe API::ProjectSnippets do ...@@ -75,7 +67,7 @@ RSpec.describe API::ProjectSnippets do
expect(response).to have_gitlab_http_status(:ok) expect(response).to have_gitlab_http_status(:ok)
expect(response).to include_pagination_headers expect(response).to include_pagination_headers
expect(json_response).to be_an Array expect(json_response).to be_an Array
expect(json_response.size).to eq(0) expect(json_response.map { |snippet| snippet['id'] }).to contain_exactly(public_snippet.id)
end end
context 'with snippets disabled' do context 'with snippets disabled' do
...@@ -86,8 +78,7 @@ RSpec.describe API::ProjectSnippets do ...@@ -86,8 +78,7 @@ RSpec.describe API::ProjectSnippets do
end end
describe 'GET /projects/:project_id/snippets/:id' do describe 'GET /projects/:project_id/snippets/:id' do
let_it_be(:snippet) { create(:project_snippet, :public, :repository, project: project) } let(:snippet) { public_snippet }
let_it_be(:private_snippet) { create(:project_snippet, :private, project: project) }
it 'returns snippet json' do it 'returns snippet json' do
get api("/projects/#{project.id}/snippets/#{snippet.id}", user) get api("/projects/#{project.id}/snippets/#{snippet.id}", user)
...@@ -113,7 +104,7 @@ RSpec.describe API::ProjectSnippets do ...@@ -113,7 +104,7 @@ RSpec.describe API::ProjectSnippets do
context 'with snippets disabled' do context 'with snippets disabled' do
it_behaves_like '403 response' do it_behaves_like '403 response' do
let(:request) { get api("/projects/#{project_no_snippets.id}/snippets/123", user) } let(:request) { get api("/projects/#{project_no_snippets.id}/snippets/#{non_existing_record_id}", user) }
end end
end end
...@@ -133,37 +124,35 @@ RSpec.describe API::ProjectSnippets do ...@@ -133,37 +124,35 @@ RSpec.describe API::ProjectSnippets do
let(:file_path) { 'file_1.rb' } let(:file_path) { 'file_1.rb' }
let(:file_content) { 'puts "hello world"' } let(:file_content) { 'puts "hello world"' }
let(:params) { base_params.merge(file_params) }
let(:file_params) { { files: [{ file_path: file_path, content: file_content }] } } let(:file_params) { { files: [{ file_path: file_path, content: file_content }] } }
let(:params) { base_params.merge(file_params) }
subject { post api("/projects/#{project.id}/snippets/", actor), params: params }
shared_examples 'project snippet repository actions' do shared_examples 'project snippet repository actions' do
let(:snippet) { ProjectSnippet.find(json_response['id']) } let(:snippet) { ProjectSnippet.find(json_response['id']) }
it 'creates repository' do
subject
expect(snippet.repository.exists?).to be_truthy
end
it 'commit the files to the repository' do it 'commit the files to the repository' do
subject subject
blob = snippet.repository.blob_at('master', file_path) aggregate_failures do
expect(snippet.repository.exists?).to be_truthy
expect(blob.data).to eq file_content blob = snippet.repository.blob_at('master', file_path)
expect(blob.data).to eq file_content
end
end end
end end
context 'with an external user' do context 'with an external user' do
let(:user) { create(:user, :external) } let(:actor) { create(:user, :external) }
context 'that belongs to the project' do context 'that belongs to the project' do
before do
project.add_developer(user)
end
it 'creates a new snippet' do it 'creates a new snippet' do
post api("/projects/#{project.id}/snippets/", user), params: params project.add_developer(actor)
subject
expect(response).to have_gitlab_http_status(:created) expect(response).to have_gitlab_http_status(:created)
end end
...@@ -171,7 +160,7 @@ RSpec.describe API::ProjectSnippets do ...@@ -171,7 +160,7 @@ RSpec.describe API::ProjectSnippets do
context 'that does not belong to the project' do context 'that does not belong to the project' do
it 'does not create a new snippet' do it 'does not create a new snippet' do
post api("/projects/#{project.id}/snippets/", user), params: params subject
expect(response).to have_gitlab_http_status(:forbidden) expect(response).to have_gitlab_http_status(:forbidden)
end end
...@@ -179,16 +168,17 @@ RSpec.describe API::ProjectSnippets do ...@@ -179,16 +168,17 @@ RSpec.describe API::ProjectSnippets do
end end
context 'with a regular user' do context 'with a regular user' do
let(:user) { create(:user) } let(:actor) { user }
before do before_all do
project.add_developer(user) project.add_developer(user)
end
before do
stub_application_setting(restricted_visibility_levels: [Gitlab::VisibilityLevel::PUBLIC, Gitlab::VisibilityLevel::PRIVATE]) stub_application_setting(restricted_visibility_levels: [Gitlab::VisibilityLevel::PUBLIC, Gitlab::VisibilityLevel::PRIVATE])
params['visibility'] = 'internal' params['visibility'] = 'internal'
end end
subject { post api("/projects/#{project.id}/snippets/", user), params: params }
it 'creates a new snippet' do it 'creates a new snippet' do
subject subject
...@@ -205,7 +195,7 @@ RSpec.describe API::ProjectSnippets do ...@@ -205,7 +195,7 @@ RSpec.describe API::ProjectSnippets do
end end
context 'with an admin' do context 'with an admin' do
subject { post api("/projects/#{project.id}/snippets/", admin), params: params } let(:actor) { admin }
it 'creates a new snippet' do it 'creates a new snippet' do
subject subject
...@@ -244,6 +234,8 @@ RSpec.describe API::ProjectSnippets do ...@@ -244,6 +234,8 @@ RSpec.describe API::ProjectSnippets do
end end
context 'when save fails because the repository could not be created' do context 'when save fails because the repository could not be created' do
let(:actor) { admin }
before do before do
allow_next_instance_of(Snippets::CreateService) do |instance| allow_next_instance_of(Snippets::CreateService) do |instance|
allow(instance).to receive(:create_repository).and_raise(Snippets::CreateService::CreateRepositoryError) allow(instance).to receive(:create_repository).and_raise(Snippets::CreateService::CreateRepositoryError)
...@@ -251,43 +243,44 @@ RSpec.describe API::ProjectSnippets do ...@@ -251,43 +243,44 @@ RSpec.describe API::ProjectSnippets do
end end
it 'returns 400' do it 'returns 400' do
post api("/projects/#{project.id}/snippets", admin), params: params subject
expect(response).to have_gitlab_http_status(:bad_request) expect(response).to have_gitlab_http_status(:bad_request)
end end
end end
context 'when the snippet is spam' do context 'when the snippet is spam' do
def create_snippet(project, snippet_params = {}) let(:actor) { user }
project.add_developer(user)
post api("/projects/#{project.id}/snippets", user), params: params.merge(snippet_params)
end
before do before do
allow_next_instance_of(Spam::AkismetService) do |instance| allow_next_instance_of(Spam::AkismetService) do |instance|
allow(instance).to receive(:spam?).and_return(true) allow(instance).to receive(:spam?).and_return(true)
end end
project.add_developer(user)
end end
context 'when the snippet is private' do context 'when the snippet is private' do
it 'creates the snippet' do it 'creates the snippet' do
expect { create_snippet(project, visibility: 'private') } params['visibility'] = 'private'
.to change { Snippet.count }.by(1)
expect { subject }.to change { Snippet.count }.by(1)
end end
end end
context 'when the snippet is public' do context 'when the snippet is public' do
it 'rejects the snippet' do before do
expect { create_snippet(project, visibility: 'public') } params['visibility'] = 'public'
.not_to change { Snippet.count } end
it 'rejects the snippet' do
expect { subject }.not_to change { Snippet.count }
expect(response).to have_gitlab_http_status(:bad_request) expect(response).to have_gitlab_http_status(:bad_request)
expect(json_response['message']).to eq({ "error" => "Spam detected" }) expect(json_response['message']).to eq({ "error" => "Spam detected" })
end end
it 'creates a spam log' do it 'creates a spam log' do
expect { create_snippet(project, visibility: 'public') } expect { subject }
.to log_spam(title: 'Test Title', user_id: user.id, noteable_type: 'ProjectSnippet') .to log_spam(title: 'Test Title', user_id: user.id, noteable_type: 'ProjectSnippet')
end end
end end
...@@ -363,7 +356,7 @@ RSpec.describe API::ProjectSnippets do ...@@ -363,7 +356,7 @@ RSpec.describe API::ProjectSnippets do
context 'with snippets disabled' do context 'with snippets disabled' do
it_behaves_like '403 response' do it_behaves_like '403 response' do
let(:request) { put api("/projects/#{project_no_snippets.id}/snippets/123", admin), params: { description: 'foo' } } let(:request) { put api("/projects/#{project_no_snippets.id}/snippets/#{non_existing_record_id}", admin), params: { description: 'foo' } }
end end
end end
...@@ -373,7 +366,7 @@ RSpec.describe API::ProjectSnippets do ...@@ -373,7 +366,7 @@ RSpec.describe API::ProjectSnippets do
end end
describe 'DELETE /projects/:project_id/snippets/:id/' do describe 'DELETE /projects/:project_id/snippets/:id/' do
let(:snippet) { create(:project_snippet, author: admin, project: project) } let_it_be(:snippet, refind: true) { public_snippet }
it 'deletes snippet' do it 'deletes snippet' do
delete api("/projects/#{snippet.project.id}/snippets/#{snippet.id}/", admin) delete api("/projects/#{snippet.project.id}/snippets/#{snippet.id}/", admin)
...@@ -394,14 +387,13 @@ RSpec.describe API::ProjectSnippets do ...@@ -394,14 +387,13 @@ RSpec.describe API::ProjectSnippets do
context 'with snippets disabled' do context 'with snippets disabled' do
it_behaves_like '403 response' do it_behaves_like '403 response' do
let(:request) { delete api("/projects/#{project_no_snippets.id}/snippets/123", admin) } let(:request) { delete api("/projects/#{project_no_snippets.id}/snippets/#{non_existing_record_id}", admin) }
end end
end end
end end
describe 'GET /projects/:project_id/snippets/:id/raw' do describe 'GET /projects/:project_id/snippets/:id/raw' do
let_it_be(:snippet) { create(:project_snippet, :repository, :public, author: admin, project: project) } let_it_be(:snippet) { create(:project_snippet, :repository, :public, author: admin, project: project) }
let_it_be(:private_snippet) { create(:project_snippet, :repository, :private, author: admin, project: project) }
it 'returns raw text' do it 'returns raw text' do
get api("/projects/#{snippet.project.id}/snippets/#{snippet.id}/raw", admin) get api("/projects/#{snippet.project.id}/snippets/#{snippet.id}/raw", admin)
...@@ -423,7 +415,7 @@ RSpec.describe API::ProjectSnippets do ...@@ -423,7 +415,7 @@ RSpec.describe API::ProjectSnippets do
context 'with snippets disabled' do context 'with snippets disabled' do
it_behaves_like '403 response' do it_behaves_like '403 response' do
let(:request) { get api("/projects/#{project_no_snippets.id}/snippets/123/raw", admin) } let(:request) { get api("/projects/#{project_no_snippets.id}/snippets/#{non_existing_record_id}/raw", admin) }
end end
end end
......
...@@ -132,7 +132,7 @@ RSpec.describe API::Snippets, factory_default: :keep do ...@@ -132,7 +132,7 @@ RSpec.describe API::Snippets, factory_default: :keep do
end end
describe 'GET /snippets/:id/files/:ref/:file_path/raw' do describe 'GET /snippets/:id/files/:ref/:file_path/raw' do
let(:snippet) { private_snippet } let_it_be(:snippet) { private_snippet }
it_behaves_like 'raw snippet files' do it_behaves_like 'raw snippet files' do
let(:api_path) { "/snippets/#{snippet_id}/files/#{ref}/#{file_path}/raw" } let(:api_path) { "/snippets/#{snippet_id}/files/#{ref}/#{file_path}/raw" }
......
# frozen_string_literal: true # frozen_string_literal: true
RSpec.shared_examples 'raw snippet files' do RSpec.shared_examples 'raw snippet files' do
let_it_be(:unauthorized_user) { create(:user) } let_it_be(:user_token) { create(:personal_access_token, user: snippet.author) }
let(:snippet_id) { snippet.id } let(:snippet_id) { snippet.id }
let(:user) { snippet.author } let(:user) { snippet.author }
let(:file_path) { '%2Egitattributes' } let(:file_path) { '%2Egitattributes' }
let(:ref) { 'master' } let(:ref) { 'master' }
subject { get api(api_path, personal_access_token: user_token) }
context 'with an invalid snippet ID' do context 'with an invalid snippet ID' do
let(:snippet_id) { 'invalid' } let(:snippet_id) { non_existing_record_id }
it 'returns 404' do it 'returns 404' do
get api(api_path, user) subject
expect(response).to have_gitlab_http_status(:not_found) expect(response).to have_gitlab_http_status(:not_found)
expect(json_response['message']).to eq('404 Snippet Not Found') expect(json_response['message']).to eq('404 Snippet Not Found')
...@@ -22,7 +24,7 @@ RSpec.shared_examples 'raw snippet files' do ...@@ -22,7 +24,7 @@ RSpec.shared_examples 'raw snippet files' do
it 'returns the raw file info' do it 'returns the raw file info' do
expect(Gitlab::Workhorse).to receive(:send_git_blob).and_call_original expect(Gitlab::Workhorse).to receive(:send_git_blob).and_call_original
get api(api_path, user) subject
aggregate_failures do aggregate_failures do
expect(response).to have_gitlab_http_status(:ok) expect(response).to have_gitlab_http_status(:ok)
...@@ -34,6 +36,17 @@ RSpec.shared_examples 'raw snippet files' do ...@@ -34,6 +36,17 @@ RSpec.shared_examples 'raw snippet files' do
end end
end end
context 'with unauthorized user' do
let(:user_token) { create(:personal_access_token) }
it 'returns 404' do
subject
expect(response).to have_gitlab_http_status(:not_found)
expect(json_response['message']).to eq('404 Snippet Not Found')
end
end
context 'with invalid params' do context 'with invalid params' do
using RSpec::Parameterized::TableSyntax using RSpec::Parameterized::TableSyntax
...@@ -50,12 +63,12 @@ RSpec.shared_examples 'raw snippet files' do ...@@ -50,12 +63,12 @@ RSpec.shared_examples 'raw snippet files' do
end end
with_them do with_them do
before do it 'returns the proper response code and message' do
get api(api_path, user) subject
end
it { expect(response).to have_gitlab_http_status(status) } expect(response).to have_gitlab_http_status(status)
it { expect(json_response[key]).to eq(message) } expect(json_response[key]).to eq(message)
end
end end
end end
end end
...@@ -256,7 +269,7 @@ end ...@@ -256,7 +269,7 @@ end
RSpec.shared_examples 'expected response status' do RSpec.shared_examples 'expected response status' do
it 'returns the correct response' do it 'returns the correct response' do
get api(path, user) get api(path, personal_access_token: user_token)
expect(response).to have_gitlab_http_status(status) expect(response).to have_gitlab_http_status(status)
end end
...@@ -265,7 +278,7 @@ end ...@@ -265,7 +278,7 @@ end
RSpec.shared_examples 'unauthenticated project snippet access' do RSpec.shared_examples 'unauthenticated project snippet access' do
using RSpec::Parameterized::TableSyntax using RSpec::Parameterized::TableSyntax
let(:user) { nil } let(:user_token) { nil }
where(:project_visibility, :snippet_visibility, :status) do where(:project_visibility, :snippet_visibility, :status) do
:public | :public | :ok :public | :public | :ok
...@@ -317,6 +330,8 @@ RSpec.shared_examples 'member project snippet access' do ...@@ -317,6 +330,8 @@ RSpec.shared_examples 'member project snippet access' do
end end
RSpec.shared_examples 'project snippet access levels' do RSpec.shared_examples 'project snippet access levels' do
let_it_be(:user_token) { create(:personal_access_token, user: user) }
let(:project) { create(:project, project_visibility) } let(:project) { create(:project, project_visibility) }
let(:snippet) { create(:project_snippet, :repository, snippet_visibility, project: project) } let(:snippet) { create(:project_snippet, :repository, snippet_visibility, project: project) }
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment