BigW Consortium Gitlab
Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
G
gitlab-ce
Project
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
Registry
Registry
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Commits
Issue Boards
Open sidebar
Forest Godfrey
gitlab-ce
Commits
936be35b
Commit
936be35b
authored
Aug 30, 2017
by
Alexis Reigel
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
update signature badges to reflect new states
parent
978252a3
Hide whitespace changes
Inline
Side-by-side
Showing
8 changed files
with
134 additions
and
34 deletions
+134
-34
_other_user_signature_badge.html.haml
...ews/projects/commit/_other_user_signature_badge.html.haml
+12
-0
_same_user_different_email_signature_badge.html.haml
...mmit/_same_user_different_email_signature_badge.html.haml
+13
-0
_signature.html.haml
app/views/projects/commit/_signature.html.haml
+1
-4
_unknown_key_signature_badge.html.haml
...ws/projects/commit/_unknown_key_signature_badge.html.haml
+1
-0
_unverified_key_signature_badge.html.haml
...projects/commit/_unverified_key_signature_badge.html.haml
+1
-0
_unverified_signature_badge.html.haml
...ews/projects/commit/_unverified_signature_badge.html.haml
+0
-0
_verified_signature_badge.html.haml
...views/projects/commit/_verified_signature_badge.html.haml
+2
-1
signed_commits_spec.rb
spec/features/signed_commits_spec.rb
+104
-29
No files found.
app/views/projects/commit/_other_user_signature_badge.html.haml
0 → 100644
View file @
936be35b
-
title
=
capture
do
.gpg-popover-icon.invalid
=
render
'shared/icons/icon_status_notfound_borderless.svg'
%div
This commit was signed with a different user's verified signature.
-
content
=
capture
do
=
render
partial:
'projects/commit/signature_badge_user'
,
locals:
{
signature:
signature
}
-
locals
=
{
signature:
signature
,
title:
title
,
content:
content
,
label:
'Unverified'
,
css_classes:
[
'invalid'
]
}
=
render
partial:
'projects/commit/signature_badge'
,
locals:
locals
app/views/projects/commit/_same_user_different_email_signature_badge.html.haml
0 → 100644
View file @
936be35b
-
title
=
capture
do
.gpg-popover-icon.invalid
=
render
'shared/icons/icon_status_notfound_borderless.svg'
%div
This commit was signed with a verified signature, but the committer email
is
<strong>
not verified
</strong>
to belong to the same user.
-
content
=
capture
do
=
render
partial:
'projects/commit/signature_badge_user'
,
locals:
{
signature:
signature
}
-
locals
=
{
signature:
signature
,
title:
title
,
content:
content
,
label:
'Unverified'
,
css_classes:
[
'invalid'
]
}
=
render
partial:
'projects/commit/signature_badge'
,
locals:
locals
app/views/projects/commit/_signature.html.haml
View file @
936be35b
-
if
signature
-
if
signature
.
verified?
=
render
partial:
'projects/commit/valid_signature_badge'
,
locals:
{
signature:
signature
}
-
else
=
render
partial:
'projects/commit/invalid_signature_badge'
,
locals:
{
signature:
signature
}
=
render
partial:
"projects/commit/
#{
signature
.
verification_status
}
_signature_badge"
,
locals:
{
signature:
signature
}
app/views/projects/commit/_unknown_key_signature_badge.html.haml
0 → 100644
View file @
936be35b
=
render
partial:
'projects/commit/unverified_signature_badge'
,
locals:
{
signature:
signature
}
app/views/projects/commit/_unverified_key_signature_badge.html.haml
0 → 100644
View file @
936be35b
=
render
partial:
'projects/commit/unverified_signature_badge'
,
locals:
{
signature:
signature
}
app/views/projects/commit/_
invali
d_signature_badge.html.haml
→
app/views/projects/commit/_
unverifie
d_signature_badge.html.haml
View file @
936be35b
File moved
app/views/projects/commit/_v
ali
d_signature_badge.html.haml
→
app/views/projects/commit/_v
erifie
d_signature_badge.html.haml
View file @
936be35b
...
...
@@ -2,7 +2,8 @@
.gpg-popover-icon.valid
=
render
'shared/icons/icon_status_success_borderless.svg'
%div
This commit was signed with a
<strong>
verified
</strong>
signature.
This commit was signed with a
<strong>
verified
</strong>
signature and the
committer email is verified to belong to the same user.
-
content
=
capture
do
=
render
partial:
'projects/commit/signature_badge_user'
,
locals:
{
signature:
signature
}
...
...
spec/features/signed_commits_spec.rb
View file @
936be35b
...
...
@@ -60,45 +60,120 @@ describe 'GPG signed commits', :js do
end
end
it
'shows popover badges'
do
gpg_user
=
create
:user
,
email:
GpgHelpers
::
User1
.
emails
.
first
,
username:
'nannie.bernhard'
,
name:
'Nannie Bernhard'
Sidekiq
::
Testing
.
inline!
do
create
:gpg_key
,
key:
GpgHelpers
::
User1
.
public_key
,
user:
gpg_user
context
'shows popover badges'
do
let
(
:user_1
)
do
create
:user
,
email:
GpgHelpers
::
User1
.
emails
.
first
,
username:
'nannie.bernhard'
,
name:
'Nannie Bernhard'
end
user
=
create
:user
project
.
team
<<
[
user
,
:master
]
let
(
:user_1_key
)
do
Sidekiq
::
Testing
.
inline!
do
create
:gpg_key
,
key:
GpgHelpers
::
User1
.
public_key
,
user:
user_1
end
end
sign_in
(
user
)
visit
project_commits_path
(
project
,
:'signed-commits'
)
let
(
:user_2
)
do
create
(
:user
,
email:
GpgHelpers
::
User2
.
emails
.
first
,
username:
'bette.cartwright'
,
name:
'Bette Cartwright'
).
tap
do
|
user
|
# secondary, unverified email
create
:email
,
user:
user
,
email:
GpgHelpers
::
User2
.
emails
.
last
end
end
# unverified signature
click_on
'Unverified'
,
match: :first
within
'.popover'
do
expect
(
page
).
to
have_content
'This commit was signed with an unverified signature.'
expect
(
page
).
to
have_content
"GPG Key ID:
#{
GpgHelpers
::
User2
.
primary_keyid
}
"
let
(
:user_2_key
)
do
Sidekiq
::
Testing
.
inline!
do
create
:gpg_key
,
key:
GpgHelpers
::
User2
.
public_key
,
user:
user_2
end
end
# verified and the gpg user has a gitlab profile
click_on
'Verified'
,
match: :first
within
'.popover'
do
expect
(
page
).
to
have_content
'This commit was signed with a verified signature.'
expect
(
page
).
to
have_content
'Nannie Bernhard'
expect
(
page
).
to
have_content
'@nannie.bernhard'
expect
(
page
).
to
have_content
"GPG Key ID:
#{
GpgHelpers
::
User1
.
primary_keyid
}
"
before
do
user
=
create
:user
project
.
team
<<
[
user
,
:master
]
sign_in
(
user
)
end
# verified and the gpg user's profile doesn't exist anymore
gpg_user
.
destroy!
it
'unverified signature'
do
visit
project_commits_path
(
project
,
:'signed-commits'
)
visit
project_commits_path
(
project
,
:'signed-commits'
)
within
(
find
(
'.commit'
,
text:
'signed commit by bette cartwright'
))
do
click_on
'Unverified'
within
'.popover'
do
expect
(
page
).
to
have_content
'This commit was signed with an unverified signature.'
expect
(
page
).
to
have_content
"GPG Key ID:
#{
GpgHelpers
::
User2
.
primary_keyid
}
"
end
end
end
it
'unverified signature: user email does not match the committer email, but is the same user'
do
user_2_key
visit
project_commits_path
(
project
,
:'signed-commits'
)
within
(
find
(
'.commit'
,
text:
'signed and authored commit by bette cartwright, different email'
))
do
click_on
'Unverified'
within
'.popover'
do
expect
(
page
).
to
have_content
'This commit was signed with a verified signature, but the committer email is not verified to belong to the same user.'
expect
(
page
).
to
have_content
'Bette Cartwright'
expect
(
page
).
to
have_content
'@bette.cartwright'
expect
(
page
).
to
have_content
"GPG Key ID:
#{
GpgHelpers
::
User2
.
primary_keyid
}
"
end
end
end
it
'unverified signature: user email does not match the committer email'
do
user_2_key
visit
project_commits_path
(
project
,
:'signed-commits'
)
within
(
find
(
'.commit'
,
text:
'signed commit by bette cartwright'
))
do
click_on
'Unverified'
within
'.popover'
do
expect
(
page
).
to
have_content
"This commit was signed with a different user's verified signature."
expect
(
page
).
to
have_content
'Bette Cartwright'
expect
(
page
).
to
have_content
'@bette.cartwright'
expect
(
page
).
to
have_content
"GPG Key ID:
#{
GpgHelpers
::
User2
.
primary_keyid
}
"
end
end
end
it
'verified and the gpg user has a gitlab profile'
do
user_1_key
visit
project_commits_path
(
project
,
:'signed-commits'
)
within
(
find
(
'.commit'
,
text:
'signed and authored commit by nannie bernhard'
))
do
click_on
'Verified'
within
'.popover'
do
expect
(
page
).
to
have_content
'This commit was signed with a verified signature and the committer email is verified to belong to the same user.'
expect
(
page
).
to
have_content
'Nannie Bernhard'
expect
(
page
).
to
have_content
'@nannie.bernhard'
expect
(
page
).
to
have_content
"GPG Key ID:
#{
GpgHelpers
::
User1
.
primary_keyid
}
"
end
end
end
it
"verified and the gpg user's profile doesn't exist anymore"
do
user_1_key
visit
project_commits_path
(
project
,
:'signed-commits'
)
# wait for the signature to get generated
within
(
find
(
'.commit'
,
text:
'signed and authored commit by nannie bernhard'
))
do
expect
(
page
).
to
have_content
'Verified'
end
user_1
.
destroy!
refresh
click_on
'Verified'
,
match: :first
within
'.popover'
do
expect
(
page
).
to
have_content
'This commit was signed with a verified signature.'
expect
(
page
).
to
have_content
'Nannie Bernhard'
expect
(
page
).
to
have_content
'nannie.bernhard@example.com'
expect
(
page
).
to
have_content
"GPG Key ID:
#{
GpgHelpers
::
User1
.
primary_keyid
}
"
within
(
find
(
'.commit'
,
text:
'signed and authored commit by nannie bernhard'
))
do
click_on
'Verified'
within
'.popover'
do
expect
(
page
).
to
have_content
'This commit was signed with a verified signature and the committer email is verified to belong to the same user.'
expect
(
page
).
to
have_content
'Nannie Bernhard'
expect
(
page
).
to
have_content
'nannie.bernhard@example.com'
expect
(
page
).
to
have_content
"GPG Key ID:
#{
GpgHelpers
::
User1
.
primary_keyid
}
"
end
end
end
end
end
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment