Allow the emergency user account to be disabled.

author: Louise Crow <louise.crow@gmail.com> 2013-03-19 13:39:40 -0700
committer: Louise Crow <louise.crow@gmail.com> 2013-03-19 13:42:02 -0700
commit: d4d0c8b3b62382c62f986f54d2a0c2a121601702 (patch)
tree: da6ac56857f1e4b908cd9d611715ccd02d2964cf /spec/controllers/admin_public_body_controller_spec.rb
parent: a0470c822ea882ea11cb1f1b22ec029356054d46 (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/spec/controllers/admin_public_body_controller_spec.rb b/spec/controllers/admin_public_body_controller_spec.rb
index 504ddc5cc..28182a3cd 100644
--- a/spec/controllers/admin_public_body_controller_spec.rb
+++ b/spec/controllers/admin_public_body_controller_spec.rb
@@ -215,6 +215,19 @@ describe AdminPublicBodyController, "when administering public bodies and paying
         PublicBody.count.should == n - 1
     end
 
+    it "doesn't let people with good emergency account credentials log in if the emergency user is disabled" do
+        setup_emergency_credentials('biz', 'fuz')
+        Configuration.stub!(:disable_emergency_user).and_return(true)
+        n = PublicBody.count
+        basic_auth_login(@request, "biz", "fuz")
+        post :show, { :id => public_bodies(:humpadink_public_body).id, :emergency => 1}
+        session[:using_admin].should == nil
+        n = PublicBody.count
+        post :destroy, { :id => public_bodies(:forlorn_public_body).id }
+        session[:using_admin].should == nil
+        PublicBody.count.should == n
+    end
+
     it "allows superusers to do stuff" do
         session[:user_id] = users(:admin_user).id
         @request.env["HTTP_AUTHORIZATION"] = ""
author	Louise Crow <louise.crow@gmail.com>	2013-03-19 13:39:40 -0700
committer	Louise Crow <louise.crow@gmail.com>	2013-03-19 13:42:02 -0700
commit	d4d0c8b3b62382c62f986f54d2a0c2a121601702 (patch)
tree	da6ac56857f1e4b908cd9d611715ccd02d2964cf /spec/controllers/admin_public_body_controller_spec.rb
parent	a0470c822ea882ea11cb1f1b22ec029356054d46 (diff)