Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Ruby on Rails functional testing with the RESTful Authentication plugin

Tags:

ruby-on-rails

testing

restful-authentication

functional-testing

I started writing functional tests for my rails app today. I use the RESTful authentication plugin. I ran into a couple confusing things I hope someone can clarify for me.

1) I wrote a quick login function because most of the functions in my rails app require authentication.

def login_as(user)
   @request.session[:user_id] = user ? user.id : nil
end

The issue I see with this function, is it basically fakes authentication. Should I be worried about this? Maybe it is okay to go this route as long as I test the true authentication method somewhere. Or maybe this is terrible practice.

2) The second confusing thing is that in some places in my functional tests, I need the full authentication process to happen. When a user is activated, I have the do_activate method create some initial objects for the user. It is analogous to the creation of a blank notebook object and pen object for a student application, if that makes sense.

So in order to properly test my application, I need the user to hit that activation state so those objects are created. I am currently using Factory Girl to create the user, and then calling the login_as function above to fake authentication.

I guess another option would be to skip the full authentication sequence and just create the blank objects with Factory Girl. I could test the proper authentication somewhere else.

What do you think? If I should go through the proper sequence, why isn't the code below invoking the do_activate function?

user = Factory.create(:user)
user.active = 1
user.save

Thank you!

like image 812
Tony Avatar asked May 15 '09 06:05

Tony

1 Answers

Faking it is perfectly acceptable.

However, write other tests that ensure that the things you want protected are protected. So

test "it should show the profile page" do
  user = Factory(:user)
  login_as(user)
  get :show, :id => user
  assert_response :success
end

test "it should not show the profile page cos I'm not logged in" do
  user = Factory(:user)
  get :show, :id => user
  assert_response :redirect
end

Feel free to hit me up for followups!

like image 139
Brian Hogan Avatar answered Nov 19 '22 15:11

Brian Hogan
Sign in to Comment

Related questions

How to use modified node module using github branch?
Reference with custom name and foreign key
Bad request error using derailed_benchmarks gem
Does Rails cache templates?
Access-Control-Allow-Origin on a single Rails route
When fetching data using an api, is it best to store that data on another database, or is it best to keep fetching that data whenever you need it? [duplicate]
ActionCable - failed to upgrade to WebSocket
Can anyone tell me what the purpose of a Gemspec file in Ruby is?
In Puma, how do I calculate DB connections?
grape each entity in a single file
Rails not loading mountable engine's js
Why are my gem 'dotenv-rails' variables not loading?
Rswag nested objects, rswag syntax
Ruby on Rails - Yarn directory location (as it is currently not writable)
How to import **/* glob scss in Rails with webpacker
How to execute custom javascript functions in Rails 6
Rails 6.0.2.1 - “sameSite” attribute set to “none” “secure” attribute
What's the best way to implement ACLs to a Rails application?
Turning off authenticity token in Rails 2 for web services?
DRY up js.erb files (include another js.erb file)

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!