sample_rails_tailwind/test/controllers/users_controller_test.rb

require "test_helper"

class UsersControllerTest < ActionDispatch::IntegrationTest
  def setup
    @user =       users(:michael)
    @other_user = users(:archer)
  end
  test "should get new" do
    get signup_path
    assert_response :success
  end

  test "should redirect index when not logged in" do
    get users_path
    assert_redirected_to login_url
  end

  test "Should get sign up title" do
    get signup_path
    assert_response :success
    assert_select "title", full_title("Sign up")
  end

  test "should redirect edit when logged in as wrong user" do
    log_in_as(@other_user)
    get edit_user_path(@user)
    assert flash.empty?
    assert_redirected_to root_url
  end

  test "should redirect update when logged in as wrong user" do
    log_in_as(@other_user)
    patch user_path(@user), params: { user: { name: @user.name,
                                              email: @user.email } }
    assert flash.empty?
    assert_redirected_to root_url
  end

  test "should not allow the admin attribute to be edited via the web" do
    log_in_as(@other_user)
    assert_not @other_user.admin?
    patch user_path(@other_user), params: {
      user: { password: "password",
              password_confirmation: "password",
              admin: true }
    }
    assert_not @other_user.reload.admin?
  end

  test "should redirect destroy when not logged in" do
    assert_no_difference "User.count" do
      delete user_path(@user)
    end
    assert_redirected_to login_url
  end

  test "should redirect destroy when logged in as a non-admin" do
    log_in_as(@other_user)
    assert_no_difference "User.count" do
      delete user_path(@user)
    end
    assert_redirected_to root_url
  end
end
feat: add user registration functionality - Add User model with validations for name and email - Implement UsersController with new action for signup - Create views for user signup and home page - Update routes to include signup path - Add bcrypt gem for password security - Include tests for user model and controller actions This commit establishes the foundation for user registration in the application, ensuring proper validation and security measures are in place. It also enhances the user experience by providing a dedicated signup page. 2024-12-31 14:20:22 +08:00			`require "test_helper"`

			`class UsersControllerTest < ActionDispatch::IntegrationTest`
feat: add user authentication and authorization - Implement friendly forwarding for user login - Add correct_user method to ensure users can only edit their own profiles - Update sessions_controller to handle forwarding URL - Enhance user controller tests to verify redirection for unauthorized access These changes improve user experience by allowing users to be redirected back to their intended page after logging in. Additionally, the new correct_user method enhances security by preventing users from editing other users' profiles, ensuring proper authorization checks are in place. 2025-01-03 13:48:59 +08:00			`def setup`
			`@user = users(:michael)`
			`@other_user = users(:archer)`
			`end`
feat: add user registration functionality - Add User model with validations for name and email - Implement UsersController with new action for signup - Create views for user signup and home page - Update routes to include signup path - Add bcrypt gem for password security - Include tests for user model and controller actions This commit establishes the foundation for user registration in the application, ensuring proper validation and security measures are in place. It also enhances the user experience by providing a dedicated signup page. 2024-12-31 14:20:22 +08:00			`test "should get new" do`
			`get signup_path`
			`assert_response :success`
			`end`

feat: add user index page and update navigation - Implement users index action in UsersController - Create view for displaying all users with gravatar - Update header to link to users index - Add styles for user list display This commit introduces a new feature that allows logged-in users to view a list of all registered users. It includes necessary controller actions, view templates, and styling to improve the user interface. 2025-01-05 01:59:05 +08:00			`test "should redirect index when not logged in" do`
			`get users_path`
			`assert_redirected_to login_url`
			`end`

feat: add user registration functionality - Add User model with validations for name and email - Implement UsersController with new action for signup - Create views for user signup and home page - Update routes to include signup path - Add bcrypt gem for password security - Include tests for user model and controller actions This commit establishes the foundation for user registration in the application, ensuring proper validation and security measures are in place. It also enhances the user experience by providing a dedicated signup page. 2024-12-31 14:20:22 +08:00			`test "Should get sign up title" do`
			`get signup_path`
			`assert_response :success`
			`assert_select "title", full_title("Sign up")`
			`end`
feat: add user authentication and authorization - Implement friendly forwarding for user login - Add correct_user method to ensure users can only edit their own profiles - Update sessions_controller to handle forwarding URL - Enhance user controller tests to verify redirection for unauthorized access These changes improve user experience by allowing users to be redirected back to their intended page after logging in. Additionally, the new correct_user method enhances security by preventing users from editing other users' profiles, ensuring proper authorization checks are in place. 2025-01-03 13:48:59 +08:00
			`test "should redirect edit when logged in as wrong user" do`
			`log_in_as(@other_user)`
			`get edit_user_path(@user)`
			`assert flash.empty?`
			`assert_redirected_to root_url`
			`end`

			`test "should redirect update when logged in as wrong user" do`
			`log_in_as(@other_user)`
			`patch user_path(@user), params: { user: { name: @user.name,`
			`email: @user.email } }`
			`assert flash.empty?`
			`assert_redirected_to root_url`
			`end`
feat: add user deletion functionality - Implement user destroy action in UsersController - Add admin check for user deletion - Update user view to include delete link for admins - Add migration to add admin attribute to users - Update tests to cover new admin functionality This commit introduces the ability for admin users to delete other users from the system. It includes necessary checks to ensure that only admins can perform this action, along with updates to the user interface and tests to validate the new behavior. 2025-01-05 18:27:13 +08:00
			`test "should not allow the admin attribute to be edited via the web" do`
			`log_in_as(@other_user)`
			`assert_not @other_user.admin?`
			`patch user_path(@other_user), params: {`
			`user: { password: "password",`
			`password_confirmation: "password",`
			`admin: true }`
			`}`
			`assert_not @other_user.reload.admin?`
			`end`

			`test "should redirect destroy when not logged in" do`
			`assert_no_difference "User.count" do`
			`delete user_path(@user)`
			`end`
			`assert_redirected_to login_url`
			`end`

			`test "should redirect destroy when logged in as a non-admin" do`
			`log_in_as(@other_user)`
			`assert_no_difference "User.count" do`
			`delete user_path(@user)`
			`end`
			`assert_redirected_to root_url`
			`end`
feat: add user registration functionality - Add User model with validations for name and email - Implement UsersController with new action for signup - Create views for user signup and home page - Update routes to include signup path - Add bcrypt gem for password security - Include tests for user model and controller actions This commit establishes the foundation for user registration in the application, ensuring proper validation and security measures are in place. It also enhances the user experience by providing a dedicated signup page. 2024-12-31 14:20:22 +08:00			`end`