spec/controllers/settings/two_factor_authentication/confirmations_controller_spec.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46

# frozen_string_literal: true

require 'rails_helper'

describe Settings::TwoFactorAuthentication::ConfirmationsController do
  render_views

  let(:user) { Fabricate(:user) }
  before do
    user.otp_secret = User.generate_otp_secret(32)
    user.save!

    sign_in user, scope: :user
  end

  describe 'GET #new' do
    it 'returns http success' do
      get :new

      expect(response).to have_http_status(:success)
      expect(response).to render_template(:new)
    end
  end

  describe 'POST #create' do
    describe 'when creation succeeds' do
      it 'renders page with success' do
        allow_any_instance_of(User).to receive(:validate_and_consume_otp!).with('123456').and_return(true)

        post :create, params: { form_two_factor_confirmation: { code: '123456' } }
        expect(response).to have_http_status(:success)
        expect(response).to render_template('settings/two_factor_authentication/recovery_codes/index')
      end
    end

    describe 'when creation fails' do
      it 'renders the new view' do
        allow_any_instance_of(User).to receive(:validate_and_consume_otp!).with('123456').and_return(false)

        post :create, params: { form_two_factor_confirmation: { code: '123456' } }
        expect(response).to have_http_status(:success)
        expect(response).to render_template(:new)
      end
    end
  end
end