spec/models/user_session_spec.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82

require "rails_helper"

describe UserSession do
  subject { build(:user_session) }

  describe "#revoke!" do
    it "records the time the session was revoked" do
      subject.revoke!
      expect(subject.revoked_at).to_not be_nil
    end
  end

  describe "#access" do
    let(:request) { double(ip: '192.168.1.1', user_agent: 'blah') }
    let(:location) { build(:location) }
    let(:because) {  subject.access(request) }

    before :each do
      allow(Location).to receive(:build_from_ip).with('192.168.1.1').and_return(location)
      because
    end

    it "records the time the session was accessed" do
      expect(subject.accessed_at).to_not be_nil
    end

    it "records the ip address of the request" do
      expect(subject.ip).to eql(request.ip)
    end

    it "records the user agent of the request" do
      expect(subject.user_agent).to eql(request.user_agent)
    end

    it 'records a location for the session' do
      expect(subject.location).to_not be_nil
    end

    it "returns a hash to store in the cookie" do
      expect(because).to eql(subject.key)
    end
  end

  describe ".active" do
    let!(:active_session) { create(:user_session, accessed_at: Time.now) }
    let!(:expired_session) { create(:user_session, accessed_at: 15.days.ago) }
    let!(:revoked_session) { create(:user_session, accessed_at: 1.day.ago, revoked_at: Time.now) }

    it "returns active sessions" do
      expect(UserSession.active).to include(active_session)
    end

    it "excludes expired sessions" do
      expect(UserSession.active).to_not include(expired_session)
    end

    it "excludes revoked sessions" do
      expect(UserSession.active).to_not include(revoked_session)
    end
  end

  describe ".authenticate" do
    let!(:active_session) { create(:user_session, accessed_at: Time.now) }

    it "returns the session if the key is active" do
      expect(UserSession.authenticate(active_session.key)).to eql(active_session)
    end

    it "return nil if the key is not active" do
      expect(UserSession.authenticate('blah')).to be_nil
    end
  end

  it "creates one key" do
    session = UserSession.create(user: create(:user))
    expect(session.key).to_not be_nil
    key = session.key
    session.accessed_at = Time.now
    session.save!
    expect(session.key).to eql(key)
  end
end