f1700523f1
* Prevent different identities from a same SSO provider from accessing a same account * Lock auth provider changes behind `ALLOW_UNSAFE_AUTH_PROVIDER_REATTACH=true` * Rename methods to avoid confusion between OAuth and OmniAuth
19 lines
530 B
Ruby
19 lines
530 B
Ruby
# frozen_string_literal: true
|
|
|
|
require 'rails_helper'
|
|
|
|
RSpec.describe Identity do
|
|
describe '.find_for_omniauth' do
|
|
let(:auth) { Fabricate(:identity, user: Fabricate(:user)) }
|
|
|
|
it 'calls .find_or_create_by' do
|
|
expect(described_class).to receive(:find_or_create_by).with(uid: auth.uid, provider: auth.provider)
|
|
described_class.find_for_omniauth(auth)
|
|
end
|
|
|
|
it 'returns an instance of Identity' do
|
|
expect(described_class.find_for_omniauth(auth)).to be_instance_of described_class
|
|
end
|
|
end
|
|
end
|