Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
bcf01ada
Commit
bcf01ada
authored
May 29, 2019
by
Phil Hughes
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Added spec for authenticating multiplex queries
parent
301a7d32
Changes
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
24 additions
and
5 deletions
+24
-5
spec/requests/api/graphql/gitlab_schema_spec.rb
spec/requests/api/graphql/gitlab_schema_spec.rb
+24
-5
No files found.
spec/requests/api/graphql/gitlab_schema_spec.rb
View file @
bcf01ada
...
...
@@ -52,13 +52,22 @@ describe 'GitlabSchema configurations' do
end
context
'multiplexed queries'
do
let
(
:current_user
)
{
nil
}
subject
do
queries
=
[
{
query:
graphql_query_for
(
'project'
,
{
'fullPath'
=>
project
.
full_path
},
%w(id name description)
)
},
{
query:
graphql_query_for
(
'echo'
,
{
'text'
=>
"$test"
},
[]),
variables:
{
"test"
=>
"Hello world"
}
}
{
query:
graphql_query_for
(
'project'
,
{
'fullPath'
=>
'$fullPath'
},
%w(id name description)
)
},
{
query:
graphql_query_for
(
'echo'
,
{
'text'
=>
"$test"
},
[]),
variables:
{
"test"
=>
"Hello world"
}
},
{
query:
graphql_query_for
(
'project'
,
{
'fullPath'
=>
project
.
full_path
},
"userPermissions { createIssue }"
)
}
]
post_multiplex
(
queries
)
post_multiplex
(
queries
,
current_user:
current_user
)
end
it
'does not authenticate all queries'
do
subject
expect
(
json_response
.
last
[
'data'
][
'project'
]).
to
be_nil
end
it_behaves_like
'imposing query limits'
do
...
...
@@ -69,18 +78,28 @@ describe 'GitlabSchema configurations' do
subject
# Expect a response for each query, even though it will be empty
expect
(
json_response
.
size
).
to
eq
(
2
)
expect
(
json_response
.
size
).
to
eq
(
3
)
json_response
.
each
do
|
single_query_response
|
expect
(
single_query_response
).
not_to
have_key
(
'data'
)
end
# Expect errors for each query
expect
(
graphql_errors
.
size
).
to
eq
(
2
)
expect
(
graphql_errors
.
size
).
to
eq
(
3
)
graphql_errors
.
each
do
|
single_query_errors
|
expect
(
single_query_errors
.
first
[
'message'
]).
to
include
(
'which exceeds max complexity of 4'
)
end
end
end
context
'authentication'
do
let
(
:current_user
)
{
project
.
owner
}
it
'authenticates all queries'
do
subject
expect
(
json_response
.
last
[
'data'
][
'project'
][
'userPermissions'
][
'createIssue'
]).
to
be
(
true
)
end
end
end
context
'when IntrospectionQuery'
do
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment