granblue.team/hensei-api
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
hensei-api/spec/requests/drag_drop_endpoints_spec.rb
Justin Edmund 07e5488e0b Add custom page size support via X-Per-Page header 
- Add page_size helper method to read from X-Per-Page header
- Set min (1) and max (100) bounds for page sizes
- Update all paginated endpoints to use dynamic page size
- Maintain backward compatibility with default sizes
2025-09-17 05:44:14 -07:00

350 lines
No EOL
12 KiB
Ruby
Raw Blame History

# frozen_string_literal: true
require 'rails_helper'
RSpec.describe 'Drag Drop API Endpoints', type: :request do
let(:user) { create(:user) }
let(:party) { create(:party, user: user) }
let(:anonymous_party) { create(:party, user: nil, edit_key: 'test-edit-key') }
let(:access_token) do
Doorkeeper::AccessToken.create!(
resource_owner_id: user.id,
expires_in: 30.days,
scopes: 'public'
)
end
let(:headers) do
{
'Authorization' => "Bearer #{access_token.token}",
'Content-Type' => 'application/json'
}
end
let(:anonymous_headers) do
{
'X-Edit-Key' => 'test-edit-key',
'Content-Type' => 'application/json'
}
end
describe 'GridWeapon Position Updates' do
let!(:weapon1) { create(:grid_weapon, party: party, position: 0) }
let!(:weapon2) { create(:grid_weapon, party: party, position: 2) }
describe 'PUT /api/v1/parties/:party_id/grid_weapons/:id/position' do
context 'with valid parameters' do
it 'updates weapon position to empty slot' do
put "/api/v1/parties/#{party.id}/grid_weapons/#{weapon1.id}/position",
params: { position: 4, container: 'main' }.to_json,
headers: headers
expect(response).to have_http_status(:ok)
json = JSON.parse(response.body)
expect(json['grid_weapon']['position']).to eq(4)
expect(weapon1.reload.position).to eq(4)
end
it 'returns error when position is occupied' do
put "/api/v1/parties/#{party.id}/grid_weapons/#{weapon1.id}/position",
params: { position: 2 }.to_json,
headers: headers
expect(response).to have_http_status(:unprocessable_entity)
expect(response.body).to include('occupied')
end
it 'returns error for invalid position' do
put "/api/v1/parties/#{party.id}/grid_weapons/#{weapon1.id}/position",
params: { position: 20 }.to_json,
headers: headers
expect(response).to have_http_status(:unprocessable_entity)
expect(response.body).to include('Invalid position')
end
end
context 'with anonymous party' do
let!(:anon_weapon) { create(:grid_weapon, party: anonymous_party, position: 1) }
it 'allows update with correct edit key' do
put "/api/v1/parties/#{anonymous_party.id}/grid_weapons/#{anon_weapon.id}/position",
params: { position: 3 }.to_json,
headers: anonymous_headers
expect(response).to have_http_status(:ok)
expect(anon_weapon.reload.position).to eq(3)
end
it 'denies update with wrong edit key' do
put "/api/v1/parties/#{anonymous_party.id}/grid_weapons/#{anon_weapon.id}/position",
params: { position: 3 }.to_json,
headers: { 'X-Edit-Key' => 'wrong-key', 'Content-Type' => 'application/json' }
expect(response).to have_http_status(:unauthorized)
end
end
end
describe 'POST /api/v1/parties/:party_id/grid_weapons/swap' do
it 'swaps two weapon positions' do
post "/api/v1/parties/#{party.id}/grid_weapons/swap",
params: { source_id: weapon1.id, target_id: weapon2.id }.to_json,
headers: headers
expect(response).to have_http_status(:ok)
json = JSON.parse(response.body)
expect(json['swapped']['source']['position']).to eq(2)
expect(json['swapped']['target']['position']).to eq(0)
expect(weapon1.reload.position).to eq(2)
expect(weapon2.reload.position).to eq(0)
end
it 'returns error when weapons not found' do
post "/api/v1/parties/#{party.id}/grid_weapons/swap",
params: { source_id: 'invalid', target_id: weapon2.id }.to_json,
headers: headers
expect(response).to have_http_status(:not_found)
end
end
end
describe 'GridCharacter Position Updates' do
let!(:char1) { create(:grid_character, party: party, position: 0) }
let!(:char2) { create(:grid_character, party: party, position: 1) }
let!(:char3) { create(:grid_character, party: party, position: 2) }
describe 'PUT /api/v1/parties/:party_id/grid_characters/:id/position' do
it 'updates character position and maintains sequential filling' do
put "/api/v1/parties/#{party.id}/grid_characters/#{char1.id}/position",
params: { position: 5, container: 'extra' }.to_json,
headers: headers
expect(response).to have_http_status(:ok)
json = JSON.parse(response.body)
expect(json['grid_character']['position']).to eq(5)
expect(json['reordered']).to be true
# Check compaction happened
expect(char2.reload.position).to eq(0)
expect(char3.reload.position).to eq(1)
end
it 'returns error for invalid position' do
put "/api/v1/parties/#{party.id}/grid_characters/#{char1.id}/position",
params: { position: 7 }.to_json,
headers: headers
expect(response).to have_http_status(:unprocessable_entity)
expect(response.body).to include('Invalid position')
end
end
describe 'POST /api/v1/parties/:party_id/grid_characters/swap' do
it 'swaps two character positions' do
post "/api/v1/parties/#{party.id}/grid_characters/swap",
params: { source_id: char1.id, target_id: char3.id }.to_json,
headers: headers
expect(response).to have_http_status(:ok)
json = JSON.parse(response.body)
expect(json['swapped']['source']['position']).to eq(2)
expect(json['swapped']['target']['position']).to eq(0)
expect(char1.reload.position).to eq(2)
expect(char3.reload.position).to eq(0)
end
end
end
describe 'GridSummon Position Updates' do
let!(:summon1) { create(:grid_summon, party: party, position: 0) }
let!(:summon2) { create(:grid_summon, party: party, position: 2) }
describe 'PUT /api/v1/parties/:party_id/grid_summons/:id/position' do
it 'updates summon position to empty slot' do
put "/api/v1/parties/#{party.id}/grid_summons/#{summon1.id}/position",
params: { position: 3, container: 'sub' }.to_json,
headers: headers
expect(response).to have_http_status(:ok)
json = JSON.parse(response.body)
expect(json['grid_summon']['position']).to eq(3)
expect(summon1.reload.position).to eq(3)
end
it 'returns error for restricted position' do
put "/api/v1/parties/#{party.id}/grid_summons/#{summon1.id}/position",
params: { position: -1 }.to_json, # Main summon position
headers: headers
expect(response).to have_http_status(:unprocessable_entity)
expect(response.body).to include('restricted position')
end
it 'returns error for friend summon position' do
put "/api/v1/parties/#{party.id}/grid_summons/#{summon1.id}/position",
params: { position: 6 }.to_json, # Friend summon position
headers: headers
expect(response).to have_http_status(:unprocessable_entity)
expect(response.body).to include('restricted position')
end
end
describe 'POST /api/v1/parties/:party_id/grid_summons/swap' do
it 'swaps two summon positions' do
post "/api/v1/parties/#{party.id}/grid_summons/swap",
params: { source_id: summon1.id, target_id: summon2.id }.to_json,
headers: headers
expect(response).to have_http_status(:ok)
json = JSON.parse(response.body)
expect(json['swapped']['source']['position']).to eq(2)
expect(json['swapped']['target']['position']).to eq(0)
expect(summon1.reload.position).to eq(2)
expect(summon2.reload.position).to eq(0)
end
it 'returns error when trying to swap with restricted position' do
restricted_summon = create(:grid_summon, party: party, position: -1) # Main summon
post "/api/v1/parties/#{party.id}/grid_summons/swap",
params: { source_id: summon1.id, target_id: restricted_summon.id }.to_json,
headers: headers
expect(response).to have_http_status(:unprocessable_entity)
expect(response.body).to include('restricted')
end
end
end
describe 'Batch Grid Update' do
let!(:weapon) { create(:grid_weapon, party: party, position: 0) }
let!(:char1) { create(:grid_character, party: party, position: 0) }
let!(:char2) { create(:grid_character, party: party, position: 1) }
let!(:summon) { create(:grid_summon, party: party, position: 1) }
describe 'POST /api/v1/parties/:id/grid_update' do
it 'performs multiple operations atomically' do
operations = [
{ type: 'move', entity: 'weapon', id: weapon.id, position: 3 },
{ type: 'swap', entity: 'character', source_id: char1.id, target_id: char2.id },
{ type: 'remove', entity: 'summon', id: summon.id }
]
post "/api/v1/parties/#{party.id}/grid_update",
params: { operations: operations }.to_json,
headers: headers
expect(response).to have_http_status(:ok)
json = JSON.parse(response.body)
expect(json['operations_applied']).to eq(3)
expect(json['changes'].count).to eq(3)
# Verify operations
expect(weapon.reload.position).to eq(3)
expect(char1.reload.position).to eq(1)
expect(char2.reload.position).to eq(0)
expect { summon.reload }.to raise_error(ActiveRecord::RecordNotFound)
end
it 'validates all operations before executing' do
operations = [
{ type: 'move', entity: 'weapon', id: weapon.id, position: 3 },
{ type: 'invalid', entity: 'character', id: char1.id } # Invalid operation
]
post "/api/v1/parties/#{party.id}/grid_update",
params: { operations: operations }.to_json,
headers: headers
expect(response).to have_http_status(:unprocessable_entity)
expect(response.body).to include('unknown operation type')
# Ensure no operations were applied
expect(weapon.reload.position).to eq(0)
end
it 'maintains character sequence when option is set' do
char3 = create(:grid_character, party: party, position: 2)
operations = [
{ type: 'move', entity: 'character', id: char2.id, position: 5 } # Move to extra
]
post "/api/v1/parties/#{party.id}/grid_update",
params: {
operations: operations,
options: { maintain_character_sequence: true }
}.to_json,
headers: headers
expect(response).to have_http_status(:ok)
# Check compaction happened
expect(char1.reload.position).to eq(0)
expect(char3.reload.position).to eq(1)
expect(char2.reload.position).to eq(5)
end
it 'rolls back all operations on error' do
operations = [
{ type: 'move', entity: 'weapon', id: weapon.id, position: 3 },
{ type: 'move', entity: 'weapon', id: 'invalid-id', position: 4 }
]
expect {
post "/api/v1/parties/#{party.id}/grid_update",
params: { operations: operations }.to_json,
headers: headers
}.not_to change { weapon.reload.position }
expect(response).to have_http_status(:unprocessable_entity)
end
end
end
describe 'Authorization' do
let(:other_user) { create(:user) }
let(:other_party) { create(:party, user: other_user) }
let!(:weapon) { create(:grid_weapon, party: other_party, position: 0) }
it 'denies access to other users party' do
put "/api/v1/parties/#{other_party.id}/grid_weapons/#{weapon.id}/position",
params: { position: 3 }.to_json,
headers: headers
expect(response).to have_http_status(:unauthorized)
end
it 'denies swap on other users party' do
weapon2 = create(:grid_weapon, party: other_party, position: 1)
post "/api/v1/parties/#{other_party.id}/grid_weapons/swap",
params: { source_id: weapon.id, target_id: weapon2.id }.to_json,
headers: headers
expect(response).to have_http_status(:unauthorized)
end
it 'denies batch update on other users party' do
post "/api/v1/parties/#{other_party.id}/grid_update",
params: { operations: [] }.to_json,
headers: headers
expect(response).to have_http_status(:unauthorized)
end
end
end
Reference in a new issue View git blame Copy permalink