zydronium/internetee-registry
1
0
Fork 0
mirror of https://github.com/internetee/registry.git synced 2025-07-20 09:46:09 +02:00
Code Issues Projects Releases Packages Wiki Activity

Optional password for contact#info

Browse source
This commit is contained in:
Andres Keskküla 2014-11-19 18:20:35 +02:00
parent bdd25f34ca
commit afcec06fe3
2 changed files with 39 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

16
app/helpers/epp/contacts_helper.rb
View file

@ -36,9 +36,8 @@ module Epp::ContactsHelper
end
def info_contact
# handle_errors and return unless rights?
@contact = find_contact
handle_errors(@contact) and return unless @contact
handle_errors(@contact) and return unless rights?
render 'epp/contacts/info'
end
@ -88,16 +87,20 @@ module Epp::ContactsHelper
xml_attrs_present?(@ph, [['id']])
end
## CHECK
## check
def validate_contact_check_request
@ph = params_hash['epp']['command']['check']['check']
xml_attrs_present?(@ph, [['id']])
end
## INFO
def validate_contact_info_request
## info
def validate_contact_info_request # and process
@ph = params_hash['epp']['command']['info']['info']
xml_attrs_present?(@ph, [['id']])
@contact = find_contact
return false unless @contact
return true if current_epp_user.registrar == @contact.registrar || xml_attrs_present?(@ph, [%w(authInfo pw)])
false
end
## SHARED
@ -123,7 +126,8 @@ module Epp::ContactsHelper
def rights?
pw = @ph.try(:[], :authInfo).try(:[], :pw)
return true if !find_contact.nil? && find_contact.auth_info_matches(pw)
return true if current_epp_user.try(:registrar) == @contact.try(:registrar)
return true if @contact.auth_info_matches(pw)
epp_errors << { code: '2201', msg: t('errors.messages.epp_authorization_error'), value: { obj: 'pw', val: pw } }
false

35
spec/epp/contact_spec.rb
View file

@ -249,10 +249,11 @@ describe 'EPP Contact', epp: true do
end
it 'returns info about contact' do
Fabricate(:contact, created_by_id: '1', code: 'info-4444', auth_info: '2fooBAR', name: 'Johnny Awesome',
@contact = Fabricate(:contact, registrar: zone, code: 'info-4444', name: 'Johnny Awesome',
address: Fabricate(:address))
response = epp_request('contacts/info.xml')
xml = EppXml::Contact.info(id: { value: @contact.code })
response = epp_request(xml, :xml, :zone)
contact = response[:parsed].css('resData chkData')
expect(response[:result_code]).to eq('1000')
@ -275,14 +276,36 @@ describe 'EPP Contact', epp: true do
expect(contact.css('name').present?).to be(true)
end
it 'doesn\'t display unassociated object', pending: true do
pending 'Have to rework contact info request to have optional password requirement'
Fabricate(:contact, code: 'info-4444')
it 'doesn\'t display unassociated object without password' do
@contact = Fabricate(:contact, code: 'info-4444', registrar: zone)
response = epp_request('contacts/info.xml')
xml = EppXml::Contact.info(id: { value: @contact.code })
response = epp_request(xml, :xml, :elkdata)
expect(response[:result_code]).to eq('2003')
expect(response[:msg]).to eq('Required parameter missing: pw')
end
it 'doesn\'t display unassociated object with wrong password' do
@contact = Fabricate(:contact, code: 'info-4444', registrar: zone)
xml = EppXml::Contact.info(id: { value: @contact.code }, authInfo: { pw: { value: 'qwe321' } })
response = epp_request(xml, :xml, :elkdata)
expect(response[:result_code]).to eq('2201')
expect(response[:msg]).to eq('Authorization error')
end
it 'doest display unassociated object with correct password' do
@contact = Fabricate(:contact, code: 'info-4444', registrar: zone, name: 'Johnny Awesome')
xml = EppXml::Contact.info(id: { value: @contact.code }, authInfo: { pw: { value: @contact.auth_info } })
response = epp_request(xml, :xml, :elkdata)
contact = response[:parsed].css('resData chkData')
expect(response[:result_code]).to eq('1000')
expect(response[:msg]).to eq('Command completed successfully')
expect(contact.css('name').first.text).to eq('Johnny Awesome')
end
end
context 'renew command' do